>> Certainly fixing all the buggy host stacks, firewall and compliance devices >> to realize that ICMP isn't bad won't be hard. > > Wait till you get started on "fixing" the "security" consultants.
Ack. I've yet to come across a *device* that doesn't deal properly with "packet too big". Lots (and lots and lots) of "security" people, one or two applications, but no devices. Regards, Tim.
