> On Sat, 20 Jul 2002 10:41:02 +0900, Jun-ichiro itojun Hagino <itojun@iijlab.net> said: > > therefore, it is unsafe to transmit ARP_REQUEST with spoofed IP > > source address - it will overwrite ARP entries of neighbors. (He meant sender address, of course) Valdis Kletnieks said: > This is, of course, a major security hole... Gee, if only ARP's funcntion was performed above the IP layer somehow ...