From owner-freebsd-hackers  Wed Apr 19 09:10:32 1995
Return-Path: hackers-owner
Received: (from majordom@localhost)
          by freefall.cdrom.com (8.6.10/8.6.6) id JAA22956
          for hackers-outgoing; Wed, 19 Apr 1995 09:10:32 -0700
Received: from edcom.com (edcom.com [140.174.173.185])
          by freefall.cdrom.com (8.6.10/8.6.6) with ESMTP id JAA22949
          for <hackers@freefall.cdrom.com>; Wed, 19 Apr 1995 09:10:29 -0700
Received: (from edward@localhost) by edcom.com (8.6.11/8.6.9) id JAA00737; Wed, 19 Apr 1995 09:10:17 -0700
Date: Wed, 19 Apr 1995 09:10:17 -0700
From: Edward Wang <edward@edcom.com>
Message-Id: <199504191610.JAA00737@edcom.com>
To: paul@vix.com
Subject: Re: DEC screend in core FreeBSD
Cc: hackers@freefall.cdrom.com
Sender: hackers-owner@FreeBSD.org
Precedence: bulk

/ The patches that need to be applied to ip_input.c are license-free.

They (the few lines there are) are substantially rewritten for FreeBSD
in any case.  (Rather, I didn't have much luck getting it to work as is.
Things may have changed.)

/ The new files (ip_screen.*, gw_screen.*, screend/*) are all restricted
/ by a DEC license such that no third party redistribution is permitted.
/ (This is an improvement over the previous license, let me assure you --
/ and it's also the best I was able to get.)

Sounds like time to reimplement it.
I've seen the code though, so I'm not sure I qualify.
The kernel hooks are tiny, but screend itself is bigger.

Also, maybe the time is better spent improving ipfirewall.
Is anyone actively working on that?

Another thing: why can't the bpf stuff be used as the basis
for a fire wall?  It already has a filter compiler in tcpdump, no?