On Thu, Jan 08, 2004 at 08:14:14AM +0100, Henrik Nordstrom wrote: > On Wed, 7 Jan 2004, Ramin Dousti wrote: > > > Absolutely. For a sec I forgot all about the dense mode. Thanks, Henrik. > > However, I still don't see any "danger" about this. > > The danger is in if you forget about this and set the TTL on multicast as > if it was normal traffic. You then allow this multicast traffic to be > distributed widely outside your network even if the originator had taken > care to make sure distribution is not allowed far beyond the local > networks. OK, agreed. But in general when multicasting private data, meant only for the local nets, one must not rely on the TTL (set by the originator) to limit the distribution. And I'm sure a well-guarded corporation doesn't do that. Now I'm going to shut up and learn from you, gods of the linux tcp/ip security subsystem. Thanks again for sharing the knowledge. Ramin > Regards > Henrik
