From owner-freebsd-questions@FreeBSD.ORG  Sun Jul 20 22:30:29 2014
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [8.8.178.115])
 (using TLSv1 with cipher ADH-AES256-SHA (256/256 bits))
 (No client certificate requested)
 by hub.freebsd.org (Postfix) with ESMTPS id 7800E54B;
 Sun, 20 Jul 2014 22:30:29 +0000 (UTC)
Received: from mail-qg0-x236.google.com (mail-qg0-x236.google.com
 [IPv6:2607:f8b0:400d:c04::236])
 (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits))
 (Client CN "smtp.gmail.com",
 Issuer "Google Internet Authority G2" (verified OK))
 by mx1.freebsd.org (Postfix) with ESMTPS id 202042349;
 Sun, 20 Jul 2014 22:30:29 +0000 (UTC)
Received: by mail-qg0-f54.google.com with SMTP id z60so4781416qgd.13
 for <multiple recipients>; Sun, 20 Jul 2014 15:30:27 -0700 (PDT)
DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113;
 h=mime-version:sender:in-reply-to:references:date:message-id:subject
 :from:to:cc:content-type;
 bh=x/p1YSxT0p6R/MUN1QDy7merCrTa1TDx3hY9G4OuZ7g=;
 b=OtkpczV3826nRpeikjMd7CIj5v+6IkN8gjeI0wjVM2+WPHo0DmtjJCBUhdEInOlLgA
 Cz8vUHEGxnwRggUpSKIXxKrBypI3SR7ixFBETT96KXu6SwErAVNhTZe7atgQmBSMmfFA
 B4wkIvLsxd0JBlFW8YvST5QoqUWWA7GpduKwSlbGPkKW5rLJCLN94PndRFZVPfflIXrK
 pyFMiIvkzk9MOqGFPQVJWRUrnYZUSIdIYX8Wo4ZOQsM5fd7EjwXFlg/KuTWTKJPo/7Jr
 JcKiYqfy0OSAffY3dfAGc0ZB5Ui5eTO9IjLetVCmzSAAFWlAObOpikjk0DfCiR6UdanE
 SsHQ==
MIME-Version: 1.0
X-Received: by 10.140.93.161 with SMTP id d30mr32070930qge.53.1405895427608;
 Sun, 20 Jul 2014 15:30:27 -0700 (PDT)
Sender: adrian.chadd@gmail.com
Received: by 10.224.1.6 with HTTP; Sun, 20 Jul 2014 15:30:27 -0700 (PDT)
In-Reply-To: <alpine.LRH.2.11.1407201809490.20643@sas1.nber.org>
References: <53C706C9.6090506@com.jkkn.dk> <20140718110645.GN87212@FreeBSD.org>
 <20140718151255.b3e677d9.gerrit.kuehn@aei.mpg.de>
 <CALfReycHtSi5GXgFZihrTsgDG6wc-ZfkYmQu7AjQmOKdeXntrA@mail.gmail.com>
 <CAEeRwNV3bJrM5KrGObZtNvSY1mVMW9jz2M4t2m2SSq_vvWmZ5w@mail.gmail.com>
 <CALfReyfWJd7YOi_Y8Mq=Q-xndLueF7vU5xwc1w_YGyM1a9DQZA@mail.gmail.com>
 <53CA2D39.6000204@sasktel.net>
 <CALfReyfkZY1ZDNohP6npRVQfjBK2M6j59R8idUGazr1yJDX3Jg@mail.gmail.com>
 <20140720123916.GV96250@e-new.0x20.net>
 <alpine.LRH.2.11.1407201430030.2748@nber7.nber.org>
 <20140720214629.GF197@home.opsec.eu>
 <alpine.LRH.2.11.1407201809490.20643@sas1.nber.org>
Date: Sun, 20 Jul 2014 15:30:27 -0700
X-Google-Sender-Auth: q4dOmS9WWAphPWLQZu-qGK70R-s
Message-ID: <CAJ-Vmonb2sb4_JWiZvEFe9+jFxo+EjTpq4DkUxv_oX9ZfyQP3A@mail.gmail.com>
Subject: Re: Future of pf / firewall in FreeBSD ? - does it have one ?
From: Adrian Chadd <adrian@freebsd.org>
To: Daniel Feenberg <feenberg@nber.org>
Content-Type: text/plain; charset=UTF-8
Cc: Kurt Jaeger <lists@opsec.eu>,
 FreeBSD Mailing List <freebsd-questions@freebsd.org>,
 freebsd-current <freebsd-current@freebsd.org>
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.18
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/options/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions/>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
 <mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sun, 20 Jul 2014 22:30:29 -0000

Noone needs to say "you can do X." You can just fork freebsd in
whatever form you want, update to the latest github and work to
eventually get it included. Or you could treat it as an entirely
external-from-system plugin module that you compile up - the packet
filter hooks API lets you do this relatively nicely nowdays.

There's multiple ways to do this. No-one needs to ask permission.
Someone just has to do it.

So if you want to do it, say so, and please feel free to canvas for
donations / funding / whatever you need to keep up whatever you need
to get it done. You don't need permission. Don't worry about how to
get it into the tree when you're done. Just do it.


-a


On 20 July 2014 15:26, Daniel Feenberg <feenberg@nber.org> wrote:
>
>
> On Sun, 20 Jul 2014, Kurt Jaeger wrote:
>
>> Hi!
>>
>>>> And you don't seem to get the point that _someone_ has to do the work.
>>>> No one has stepped up so far, so nothing is going to change.
>>
>>
>> Franco Fichtner said he's interested in doing it. He probably
>> needs funding.
>>
>>> No one with authority has yet said that "If an updated pf were available,
>>>   would be welcomed".
>>
>>
>> Which person or group would you view as "authority" in this case ?
>>
>
> I am not privy to the inner workings of the project, but surely a
> decision of this importance would come to the attention of the
> core team, who are listed at:
>
>   http://www.freebsd.org/administration.html#t-core
>
> A port of OpenBSD PF may be quite impractical or undesirable- I have no
> idea. However, if all potential contributions are viewed as criticism to be
> refuted, it will damage the ability of the project to attract contributors.
> Rather than telling a potential contributor that their efforts will never be
> included in the official distribution it would be more supportive of the
> project to say that a port of PF would be welcome as a port, but might have
> difficulty displacing current offering. That doesn't promise anything, but
> encourages involvement, if indeed involvement is desired.
>
> Daniel Feenberg
>
>
>> --
>> pi@opsec.eu            +49 171 3101372                         6 years to
>> go !
>>
> _______________________________________________
> freebsd-questions@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"