I have pre-set ARP table with permanent records (MAC addresses) for all possible directly connected IP address. It complicate IP address spoofing a lot. I want retain distribution of IP adresses (and other options) via BOOTP (central management is easy). The bootpd and bootpgw replace already present ARP permanent records with temporary ones. I want disable this functionality by option. The new [-a] option force bootpd and bootpgw to skip the ARP table modifications. (Yes, I know, skilled user can change the MAC address of NIC, so spoofing is still possible - but it's better than nothing) How-To-Repeat: N/A
Despite originally requested for 4.4-RELEASE, it still apply to current as well. Dan
Created attachment 156923 [details] updated patch This is one of the oldest PRs I've ever seen and it nearly applies cleanly. I fixed the patch rejection and added a man page modification. Maybe 14 years later someone will take notice? :-)
If the issue is still in CURRENT, update the Version field to suit, and possibly assign to freebsd-net?
It's not issue but rather enhancement request (this ancient PR has been created at the times the database has been used not only to report bugs but enhancement requests as well). Yes, the "issue" still exists and the patch apply to all supported RELEASES and to HEAD as well, it "solve" the "issue" and harm nothing ... ... but I'm not so sure if there's anyone using bootpd. We will not use BOOTPD anymore so I'm interested in this feature no longer. Feel free to either commit or close this historic PR.
I added a phabic review for this: https://reviews.freebsd.org/D2581
A commit references this bug: Author: markj Date: Tue May 21 21:22:44 UTC 2019 New revision: 348066 URL: https://svnweb.freebsd.org/changeset/base/348066 Log: bootpd: Add an option to skip modifications to the ARP table. PR: 30854 Submitted by: Dan Lukes <dan@obluda.cz> Reviewed by: imp (previous version) MFC after: 1 week Event: Waterloo Hackathon 2019 Differential Revision: https://reviews.freebsd.org/D2581 Changes: head/libexec/bootpd/bootpd.8 head/libexec/bootpd/bootpd.c head/libexec/bootpd/bootpgw/bootpgw.c
Thanks Mark!
A commit references this bug: Author: markj Date: Tue May 28 14:17:04 UTC 2019 New revision: 348326 URL: https://svnweb.freebsd.org/changeset/base/348326 Log: MFC r348066, r348090: bootpd: Add an option to skip modifications to the ARP table. PR: 30854 Changes: _U stable/12/ stable/12/libexec/bootpd/bootpd.8 stable/12/libexec/bootpd/bootpd.c stable/12/libexec/bootpd/bootpgw/bootpgw.c
Thanks for the patch. I'm sorry that it lingered for so long.