diff options
author | bmah <bmah@FreeBSD.org> | 2001-11-26 20:06:25 +0000 |
---|---|---|
committer | bmah <bmah@FreeBSD.org> | 2001-11-26 20:06:25 +0000 |
commit | 39356fa2d6f04d71d240b0b99a1201920917f34d (patch) | |
tree | c3dcccf628c6fde5883887a60302ab5002d23503 /release | |
parent | bfc02ffff869ee7630c8b1eea95126bc879b4d63 (diff) | |
download | FreeBSD-src-39356fa2d6f04d71d240b0b99a1201920917f34d.zip FreeBSD-src-39356fa2d6f04d71d240b0b99a1201920917f34d.tar.gz |
New release note: TCP syncache.
Diffstat (limited to 'release')
-rw-r--r-- | release/doc/en_US.ISO8859-1/relnotes/article.sgml | 9 | ||||
-rw-r--r-- | release/doc/en_US.ISO8859-1/relnotes/common/new.sgml | 9 |
2 files changed, 18 insertions, 0 deletions
diff --git a/release/doc/en_US.ISO8859-1/relnotes/article.sgml b/release/doc/en_US.ISO8859-1/relnotes/article.sgml index a63829c..0e5e3da 100644 --- a/release/doc/en_US.ISO8859-1/relnotes/article.sgml +++ b/release/doc/en_US.ISO8859-1/relnotes/article.sgml @@ -708,6 +708,15 @@ <varname>net.inet.tcp.strict_rfc1948</varname> and <varname>net.inet.tcp.isn_reseed_interval</varname> sysctl variables. &merged;</para> + + <para>The TCP implementation in &os; now implements a cache of + outstanding, received SYN segments. Incoming SYN segments now + cause entries to be placed in the cache until the TCP three-way + handshake is complete, at which point, memory is allocated for + the connection as usual. This so-called + <quote>syncache</quote> makes a host much more resistant to + TCP-based Denial of Service attacks. Work on this feature was + sponsored by DARPA and NAI Labs.</para> </sect3> <sect3> diff --git a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml index a63829c..0e5e3da 100644 --- a/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml +++ b/release/doc/en_US.ISO8859-1/relnotes/common/new.sgml @@ -708,6 +708,15 @@ <varname>net.inet.tcp.strict_rfc1948</varname> and <varname>net.inet.tcp.isn_reseed_interval</varname> sysctl variables. &merged;</para> + + <para>The TCP implementation in &os; now implements a cache of + outstanding, received SYN segments. Incoming SYN segments now + cause entries to be placed in the cache until the TCP three-way + handshake is complete, at which point, memory is allocated for + the connection as usual. This so-called + <quote>syncache</quote> makes a host much more resistant to + TCP-based Denial of Service attacks. Work on this feature was + sponsored by DARPA and NAI Labs.</para> </sect3> <sect3> |