chiark / gitweb /
udp.c: Do not send NAKs in response to NAKs
If an incoming packet isn't name-addressed and has an invalid
destination site id, udp.c would send a NAK. This is not a good idea
- if somehow the source site id was wrong too, it will result in a NAK
storm.
This is a security vulnerability as it can be used by an attacker to
trigger an unending NAK storm.
Also, improve the message printed when a NAK is sent by udp.c because
no site wanted to handle it.
Signed-off-by: Ian Jackson <ijackson@chiark.greenend.org.uk>