Enabling VIMAGE by default for FreeBSD 11?
Bjoern A. Zeeb
bzeeb-lists at lists.zabbadoz.net
Thu Oct 16 14:31:12 UTC 2014
On 16 Oct 2014, at 08:52 , Dag-Erling Smørgrav <des at des.no> wrote:
> "Bjoern A. Zeeb" <bzeeb-lists at lists.zabbadoz.net> writes:
>> Also if people are seriously thinking about virtualising pf we need to
>> import the openbsd/apple pf fix from a few years ago because otherwise
>> people in virtualised stacks with a /dev/pf can do ugly things. I
>> think it’s been this one:
>> http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2010-3830
>
> There are other serious issues with our current pf (checksum corruption)
> which I think can only be resolved by importing a newer version.
Sorry, but you lost context. I was talking about security implications in VIMAGE context, not about random bugs.
—
Bjoern A. Zeeb "Come on. Learn, goddamn it.", WarGames, 1983
More information about the freebsd-virtualization
mailing list