Re: TCPwrappers race condition
Wietse Venema (wietse@WZV.WIN.TUE.NL)
Fri, 03 Oct 1997 19:24:36 -0400
Wietse Venema:
> Although the time window can be made *smaller* by using results
> from accept() instead of getpeername(), the time window can be
> eliminated only by changing the kernel so that it does not destroy
> the protocol control block when the connection is reset by the
> peer.
John W. Temples:
> If accept() does return without an error, why would you not have
> the address? Thus where is the time window?
The time window is with the other returns from accept(). Ignoring
error returns from accept() does not solve the problem.
Wietse