From owner-freebsd-net@FreeBSD.ORG Mon Apr 15 19:52:46 2013 Return-Path: Delivered-To: net@freebsd.org Received: from mx1.freebsd.org (mx1.FreeBSD.org [8.8.178.115]) by hub.freebsd.org (Postfix) with ESMTP id C62104EA; Mon, 15 Apr 2013 19:52:46 +0000 (UTC) (envelope-from Cy.Schubert@komquats.com) Received: from smtp-out-01.shaw.ca (smtp-out-01.shaw.ca [64.59.136.137]) by mx1.freebsd.org (Postfix) with ESMTP id 323E016DE; Mon, 15 Apr 2013 19:52:46 +0000 (UTC) X-Cloudmark-SP-Filtered: true X-Cloudmark-SP-Result: v=1.1 cv=SNukfclIDc7GjKe+LHtSoPUBJt/gHPuqMk7EpfoOdzs= c=1 sm=1 a=QrugwKR0C_UA:10 a=wAGQQ9Az6v0A:10 a=BLceEmwcHowA:10 a=ICAaq7hcmGcA:10 a=kj9zAlcOel0A:10 a=IbtKDeXwb2+SRU442/pi3A==:17 a=6I5d2MoRAAAA:8 a=CjxXgO3LAAAA:8 a=BWvPGDcYAAAA:8 a=MyE6jBz-AAAA:8 a=_ctWjzdLAAAA:8 a=j8UoxrQNBuIlFuJTPtQA:9 a=CjuIK1q_8ugA:10 a=FvmvQ9K01c4A:10 a=fzi2j93kHG4A:10 a=SV7veod9ZcQA:10 a=rC2wZJ5BpNYA:10 a=V7tsTZBp22UA:10 a=aLekXsIfG0IA:10 a=HpAAvcLHHh0Zw7uRqdWCyQ==:117 Received: from unknown (HELO spqr.komquats.com) ([96.50.7.119]) by smtp-out-01.shaw.ca with ESMTP; 15 Apr 2013 13:51:37 -0600 Received: from slippy.cwsent.com (slippy8 [10.2.2.6]) by spqr.komquats.com (Postfix) with ESMTP id 2CE3880; Mon, 15 Apr 2013 12:52:44 -0700 (PDT) Received: from slippy (localhost [127.0.0.1]) by slippy.cwsent.com (8.14.6/8.14.6) with ESMTP id r3FJqhh5003278; Mon, 15 Apr 2013 12:52:43 -0700 (PDT) (envelope-from Cy.Schubert@komquats.com) Message-Id: <201304151952.r3FJqhh5003278@slippy.cwsent.com> X-Mailer: exmh version 2.8.0 04/21/2012 with nmh-1.5 From: Cy Schubert X-os: FreeBSD X-Sender: cy@cwsent.com X-URL: http://www.komquats.com/ To: Jung-uk Kim Subject: Re: ipfilter(4) needs maintainer In-Reply-To: Message from Jung-uk Kim of "Mon, 15 Apr 2013 15:45:49 -0400." <516C58ED.40505@FreeBSD.org> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii Date: Mon, 15 Apr 2013 12:52:43 -0700 X-Mailman-Approved-At: Mon, 15 Apr 2013 20:39:19 +0000 Cc: Warren Block , Scott Long , "current@freebsd.org" , Chris Rees , darrenr@freebsd.org, Rui Paulo , "net@freebsd.org" , Cy Schubert , "cpet@sdf.org" X-BeenThere: freebsd-net@freebsd.org X-Mailman-Version: 2.1.14 Precedence: list Reply-To: Cy Schubert List-Id: Networking and TCP/IP with FreeBSD List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 15 Apr 2013 19:52:46 -0000 In message <516C58ED.40505@FreeBSD.org>, Jung-uk Kim writes: > -----BEGIN PGP SIGNED MESSAGE----- > Hash: SHA1 > > On 2013-04-15 15:27:55 -0400, Cy Schubert wrote: > > In message , Scott > > Long writes: > >> > >> On Apr 15, 2013, at 11:48 AM, Cy Schubert > >> wrote: > >> > >>> In message <18DF99B0-6E66-4906-A233-7778451B8A92@felyko.com>, > >>> Rui Paulo writes: > >>>> 2013/04/15 9:55$B!"(BCy Schubert > >>>> $B$N%a%C%;!<%8 > >> (B: > >>>> > >>>>> I've been planning on taking on IP Filter for quite some > >>>>> time. Unfortunately I've left my src commit bit lapse (my > >>>>> ports commit bit is alive and well though) thus I'm looking > >>>>> for a mentor. In addition I'm working on an ACER WMI/ACPI > >>>>> kld. One mentor would be preferred but two would be fine > >>>>> too. > >>>> > >>>> What are your plans regarding ipfilter? I remain unconvinced > >>>> that it shoul > >> d b > >>>> e in the base system. Perhaps you can work on it as a port? > >>> > >>> The initial plan was to import IP Filter 5.1.2 into HEAD. > >>> darrenr@ hadn't done much with IPF while employed with Sun. > >>> Since then there has been some development that is long overdue > >>> for HEAD. > >>> > >>> I'm not sure if I'd MFC it into 9 or not. > >>> > >>> I did consider a port but given it would has to touch bits and > >>> pieces of the source tree (/usr/src), a port would be messy and > >>> the decision was made > >> > >>> to work on importing it into base. > >>> > >>>> > >>>> Why do you want to work on something that people have been > >>>> trying to remov > >> e s > >>>> ince 2005? > >>> > >>> I and others have been using it in FreeBSD for over decade. For > >>> the longest > >> > >>> of time we'd use a common set of rules across a FreeBSD and > >>> Solaris farm (using ipfmeta, makefiles, rsync, rdist, and a > >>> local CVS repo). Interoperability with other systems which use > >>> IP Filter is a plus. If there's a maintainer, it only makes > >>> FreeBSD richer. Losing IP Filter would be a loss. > >>> > >> > >> > >> If you're committed to maintaining IPFilter, that's great. > >> However, it can't be left to stagger along in a zombie state > >> with nothing more than good intentio ns from well meaning people. > >> What is your timeline for getting it back into sha pe and > >> re-integrating yourself into the committer community? > > > > I would think this would be my top priority right now. I'd like to > > see it at the latest level in HEAD. I would like to MFC to 9-STABLE > > at some point. > > > > Given that IPF already lives in src/contrib and src/sys/contrib, > > would the change in License from Darren Reed's own not so BSD > > friendly IPF license to GPLv2 be of concern. I recall there was a > > lot of concern over IPF's license change at the time. (FreeBSD > > moved it to contrib while OpenBSD removed it completely and wrote > > PF -- I'm not sure what NetBSD did). > > FYI, NetBSD has PF from OpenBSD: > > http://www.netbsd.org/docs/network/pf.html > > Also, they upgraded it to the latest GPL'ed sources recently (and > moved to a different directory): > > http://cvsweb.netbsd.org/bsdweb.cgi/src/sys/external/bsd/ipf/netinet/?only_wi > th_tag=MAIN > > Now they have their own packet filter, called NPF: > > http://mail-index.netbsd.org/netbsd-announce/2012/10/17/msg000161.html > > They have more choices now. :-) I'm always (or usually) one for more than fewer choices. -- Cheers, Cy Schubert FreeBSD UNIX: Web: http://www.FreeBSD.org