In the security field, we should always ask ourselves 2 questions to determine whether we're as secure as we think we are.

1) Is it necessary?

2) Is it vulnerable?

1) If you don't need it, you shouldn't have it. Extra "features" are what get us into trouble by adding more areas for exploitation of weaknesses.

2) If it's vulnerable you don't want to use it, but in some instances you have no choice if it passes the first question of strictest need.

In this case we have failures on both questions. What is the reason for keeping the malformed packets? And why not fix the vulnerabilities?

I say follow BSD, adopt this into standard and work it into products over the next decade. By which time older hardware will die out, other hardware can be replaced with firmware upgrades and the newer hardware will all be ready for it.

[ reply ]

Link to this comment: http://www.securityfocus.com/comments/articles/11306/32428#32428