On Sat, 20 Jul 2002 10:41:02 +0900, Jun-ichiro itojun Hagino
<itojun(_at_)iijlab(_dot_)net> said:
therefore, it is unsafe to transmit ARP_REQUEST with spoofed IP
source address - it will overwrite ARP entries of neighbors.
(He meant sender address, of course)
Valdis Kletnieks said:
This is, of course, a major security hole...
Gee, if only ARP's funcntion was performed above the IP layer somehow ...