From owner-freebsd-security@FreeBSD.ORG  Sun Mar 30 18:40:21 2003
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 0A85237B404
	for <freebsd-security@freebsd.org>;
	Sun, 30 Mar 2003 18:40:21 -0800 (PST)
Received: from caligula.anu.edu.au (caligula.anu.edu.au [150.203.224.42])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 19BD843F3F
	for <freebsd-security@freebsd.org>;
	Sun, 30 Mar 2003 18:40:20 -0800 (PST)
	(envelope-from avalon@caligula.anu.edu.au)
Received: from caligula.anu.edu.au (localhost [127.0.0.1])
	by caligula.anu.edu.au (8.12.8/8.12.8) with ESMTP id h2V2eHsa017228;
	Mon, 31 Mar 2003 12:40:17 +1000 (EST)
Received: (from avalon@localhost)
	by caligula.anu.edu.au (8.12.8/8.12.8/Submit) id h2V2eGYX017225;
	Mon, 31 Mar 2003 12:40:16 +1000 (EST)
From: Darren Reed <avalon@caligula.anu.edu.au>
Message-Id: <200303310240.h2V2eGYX017225@caligula.anu.edu.au>
To: csmith@its.uq.edu.au (Christopher Smith)
Date: Mon, 31 Mar 2003 12:40:16 +1000 (Australia/ACT)
In-Reply-To: <93920598-6314-11D7-A85A-000502F96668@its.uq.edu.au> from
	"Christopher Smith" at Mar 31, 2003 11:03:25 AM
X-Mailer: ELM [version 2.5 PL1]
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
X-Mailman-Approved-At: Sun, 30 Mar 2003 23:12:26 -0800
cc: freebsd-security@freebsd.org
cc: Michael Richards <michael@fastmail.ca>
Subject: Re: Multiple Firewalls with ipfilter?
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Security issues [members-only posting]
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 31 Mar 2003 02:40:53 -0000

In some mail from Christopher Smith, sie said:
> 
> If I had to make a prediction, I'd say the OpenBSD guys will get there 
> first with pf.  If they do, they'll really have a killer app in the 
> firewalling market.

Well, in that case, they'd better already have done it, otherwise they
won't be first.  There may be one or two old versions of ipfilter 4.0
code around that doesn't have the files relevant files deleted.

My reluctance in making the code public is rather simple...

(a) if you *really* need redundancy then you're prepared to pay for it;
(b) it would be quite nice if ipfilter could somehow support its author;
(c) i'm generally not all that interested in trying to actively devalue
    the potential of value-add things like this.

As someone who works in software engineering for a "profession", it is
sometimes hard to justify providing software for free that goes beyond
the basic requirements.  Note that if I was in some other industry or
still a student, I might have a different philosophy.  It's bad enough
that we have the spectre of "cheap labour" looming overhead...but I'm
digressing into a political rant on the nature of the industry now.
 
Cheers,
Darren