> On Sat, 20 Jul 2002 10:41:02 +0900, Jun-ichiro itojun Hagino <[EMAIL PROTECTED]> >said: > > therefore, it is unsafe to transmit ARP_REQUEST with spoofed IP > > source address - it will overwrite ARP entries of neighbors. (He meant sender address, of course) Valdis Kletnieks said: > This is, of course, a major security hole...
Gee, if only ARP's funcntion was performed above the IP layer somehow ...