Date: Thu, 16 Oct 2014 14:31:02 +0000 From: "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net> To: =?windows-1252?Q?Dag-Erling_Sm=F8rgrav?= <des@des.no> Cc: freebsd-net@freebsd.org, freebsd-virtualization@freebsd.org, freebsd-arch <freebsd-arch@freebsd.org> Subject: Re: Enabling VIMAGE by default for FreeBSD 11? Message-ID: <CA7F7221-AA3C-4386-AE57-5A0FCBCEC844@lists.zabbadoz.net> In-Reply-To: <86d29so0r1.fsf@nine.des.no> References: <CAG=rPVe_JGy%2BeUiDjHaXXi5=n2mWGOeZjHkbVeUeS_m1z1_uMg@mail.gmail.com> <20141012182551.002b3cc0a45a56d3f34e6174@yamagi.org> <3B4471A7-CDF4-440D-BDD8-3D5B2256B8DD@lists.zabbadoz.net> <CAG=rPVdFzgvEo2vR5omnDnHDisU4k0tmTo8AFOg81q12bgwgBg@mail.gmail.com> <7EAA2A23-06F9-44C9-A3E1-62AA37EE5CDA@lists.zabbadoz.net> <86d29so0r1.fsf@nine.des.no>
next in thread | previous in thread | raw e-mail | index | archive | help
On 16 Oct 2014, at 08:52 , Dag-Erling Sm=F8rgrav <des@des.no> wrote: > "Bjoern A. Zeeb" <bzeeb-lists@lists.zabbadoz.net> writes: >> Also if people are seriously thinking about virtualising pf we need = to >> import the openbsd/apple pf fix from a few years ago because = otherwise >> people in virtualised stacks with a /dev/pf can do ugly things. I >> think it=92s been this one: >> http://cve.mitre.org/cgi-bin/cvename.cgi?name=3DCVE-2010-3830 >=20 > There are other serious issues with our current pf (checksum = corruption) > which I think can only be resolved by importing a newer version. Sorry, but you lost context. I was talking about security implications = in VIMAGE context, not about random bugs. =97=20 Bjoern A. Zeeb "Come on. Learn, goddamn it.", WarGames, 1983
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?CA7F7221-AA3C-4386-AE57-5A0FCBCEC844>