[612] in linux-security and linux-alert archive
Re: [linux-security] Re: Kernels 1.3.6[12] break IP firewalling
daemon@ATHENA.MIT.EDU (owner-linux-security@tarsier.cv.nr)
Tue Feb 13 00:58:45 1996
From: owner-linux-security@tarsier.cv.nrao.edu
To: owner-linux-security@tarsier.cv.nrao.edu (Alan Cox)
Date: Mon, 12 Feb 1996 13:38:28 +0100 (MET)
Cc: linux-security@tarsier.cv.nrao.edu, linux-announce@vger.rutgers.edu
In-Reply-To: <199602120936.JAA28161@snowcrash.cymru.net> from "Alan Cox" at Feb 12, 96 09:36:30 am
[mod: I just looked at ftp.xos.nl and found that there's now version 2.0beta1
available, dated 12 Feb, 13:24. I haven't compiled it yet, but I guess this
should settle the issue. --okir]
Alan Cox wrote:
>
>> The 1.3.61 and 1.3.62 kernels break IP firewalling due to new
>> setsockopt() arguments.
>>
>> There is currently no publically available set of utilities to
>> make firewalling work under these kernels.
>>
>> If you depend on firewalling, STAY AWAY FROM THESE KERNELS.
>Fortunately the provided information is incorrect. You can get the
>new ipfwadm from ftp.xos.nl.
This turns out not to be the case. The latest public version at that
site is in /pub/linux/ipfwadm/ipfwadm-1.2.tar.gz, which breaks. The
latest beta version is at /pub/tmp/ipfwadm-beta.tar.gz (which I just
verified half a minute ago), dated Jan 29 12:56, which also breaks under
1.3.6[12].
--
Thomas Koenig, Thomas.Koenig@ciw.uni-karlsruhe.de, ig25@dkauni2.bitnet.
The joy of engineering is to find a straight line on a double
logarithmic diagram.
