[pf4freebsd] Re: Possible remote DoS (panic) with scrub rules!!!
Pyun YongHyeon
yongari at kt-is.co.kr
Wed Sep 15 20:47:56 PDT 2004
On Fri, Aug 29, 2003 at 05:31:16AM +0200, Max Laier wrote:
> Hello,
>
> just got a HUB from Daniel regarding a possible remote DoS in pf_norm.c This
> might not be a problem if you do not use "scrub"-Rules.
>
> This regards all versions of pf4freebsd prior 1.63 (which was just released)
> and port prior 1.0_7 (just commited by "edwin").
>
> Version 1.63 (for tarball users) can be found at:
> http://pf4freebsd.love2party.net/pf_freebsd_1.63.tar.gz
> MD5 (pf_freebsd_1.63.tar.gz) = d36bef7f8023c891572148c0d3930410
> the patch for the port is commited.
>
If you don't have pf.os in /etc directory, please copy pf.os
to that directory manually.
pf.os can be found at:
http://www.openbsd.org/cgi-bin/cvsweb/src/etc/pf.os
You may not do anything with pfctl without /etc/pf.os.
> Please update as soon as possible.
> Additional information can be found at:
> http://www.openbsd.org/cgi-bin/cvsweb/src/sys/net/pf_norm.c (v1.75)
>
> Regards,
> Max
>
Regards,
Pyun YongHyeon
--
Pyun YongHyeon <http://www.kr.freebsd.org/~yongari>
More information about the freebsd-pf
mailing list