Date: Tue, 5 Feb 2008 14:40:03 GMT From: "Andrey V. Elsukov" <bu7cher@yandex.ru> To: freebsd-bugs@FreeBSD.org Subject: Re: kern/120290: ipfw jump rules Message-ID: <200802051440.m15Ee3w0057189@freefall.freebsd.org>
next in thread | raw e-mail | index | archive | help
The following reply was made to PR kern/120290; it has been noted by GNATS. From: "Andrey V. Elsukov" <bu7cher@yandex.ru> To: Marius Nistor <mariusmayl@yahoo.com> Cc: FreeBSD-gnats-submit@FreeBSD.org Subject: Re: kern/120290: ipfw jump rules Date: Tue, 05 Feb 2008 17:11:02 +0300 Marius Nistor wrote: > [11:09:54 root@localhost ~]# ipfw show > 10164 0 0 allow ip from 193.64.7.151 to any uid net > 10165 21 5166 allow ip from any to 193.64.7.151 > 10166 23 1213 allow tcp from 193.64.7.151 10000-65535,21,22,25,80,110,113,443 to any > 10167 0 0 deny ip from 193.64.7.151 to any > 65535 989179 91977108 allow ip from any to any > [11:09:56 root@localhost ~]# > so rule 10164 and 10167 not used > i tryed 10166 allow tcp from 193.64.7.151 > 10000-65535,21,22,25,80,110,113,443 to any uid net ... but the ip is go > on internet without oidentd support Do you have any processes which deal with TCP/UDP with user's "net" credentials? -- WBR, Andrey V. Elsukov
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200802051440.m15Ee3w0057189>