List Archive: gentoo-security
Note: Due to technical difficulties, the Archives are currently not up to date.
provides an alternative service for most mailing lists.c.f. bug 424647
> Sometimes your packets are too big for some parts of the net without
> fragmenting so you get a message that you should reduce your packet
> size. If you block such messages, you can't connect with the target.
> These messages are delivered by ICMP so blocking of ICMP is very stupid.
No, blocking of "fragmentation required but DF set" ICMP is stupid.
Allowing all ICMP in just to enable PMTU discovery is not required.
email@example.com mailing list