From owner-freebsd-pf@FreeBSD.ORG Thu Sep 16 03:46:20 2004 Return-Path: Delivered-To: freebsd-pf@freebsd.org Received: by hub.freebsd.org (Postfix, from userid 674) id 76A4716A4CF; Thu, 16 Sep 2004 03:46:20 +0000 (GMT) Delivered-To: mlaier@vampire.homelinux.org Received: (qmail 59776 invoked by uid 1005); 22 Aug 2003 21:11:42 -0000 Delivered-To: max@vampire.homelinux.org Received: (qmail 59773 invoked from network); 22 Aug 2003 21:11:41 -0000 Received: from moutng.kundenserver.de (212.227.126.186) by pd9530eae.dip.t-dialin.net with SMTP; 22 Aug 2003 21:11:41 -0000 Received: from [212.227.126.164] (helo=mxng11.kundenserver.de) by moutng.kundenserver.de with esmtp (Exim 3.35 #1) id 19qK57-0005J7-00 for max@vampire.homelinux.org; Sat, 23 Aug 2003 00:08:29 +0200 Received: from [206.53.239.180] (helo=turing.freelists.org) by mxng11.kundenserver.de with esmtp (Exim 3.35 #1) id 19qK55-0006RO-00 for max@love2party.net; Sat, 23 Aug 2003 00:08:27 +0200 Received: from turing (localhost [127.0.0.1])ESMTP id D00CB390B17; Fri, 22 Aug 2003 17:08:45 -0500 (EST) Received: with ECARTIS (v1.0.0; list pf4freebsd); Fri, 22 Aug 2003 17:08:41 -0500 (EST) Delivered-To: pf4freebsd@freelists.org Received: from moutng.kundenserver.de (moutng.kundenserver.de [212.227.126.189])ESMTP id D536C390835 for ; Fri, 22 Aug 2003 17:08:40 -0500 (EST) Received: from [212.227.126.160] (helo=mrelayng.kundenserver.de) by moutng.kundenserver.de with esmtp (Exim 3.35 #1) id 19qK3S-0000t3-00 for pf4freebsd@freelists.org; Sat, 23 Aug 2003 00:06:46 +0200 Received: from [217.83.14.174] (helo=max900) by mrelayng.kundenserver.de with asmtp (Exim 3.35 #1) id 19qK3R-0003ub-00 for pf4freebsd@freelists.org; Sat, 23 Aug 2003 00:06:46 +0200 Message-ID: <023a01c368f9$e6c1c5b0$01000001@max900> From: "Max Laier" To: MIME-Version: 1.0 Content-type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 6.00.2800.1158 X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2800.1165 X-archive-position: 100 X-ecartis-version: Ecartis v1.0.0 Sender: pf4freebsd-bounce@freelists.org Errors-To: pf4freebsd-bounce@freelists.org X-original-sender: max@love2party.net Precedence: normal X-list: pf4freebsd X-UID: 210 X-Length: 3550 X-Mailman-Approved-At: Thu, 16 Sep 2004 03:55:52 +0000 Subject: [pf4freebsd] Version 1.62 (took a little long then 2h) X-BeenThere: freebsd-pf@freebsd.org X-Mailman-Version: 2.1.1 Reply-To: pf4freebsd@freelists.org List-Id: Technical discussion and general questions about packet filter (pf) List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , Date: Thu, 16 Sep 2004 03:46:20 -0000 X-Original-Date: Sat, 23 Aug 2003 00:08:20 +0200 X-List-Received-Date: Thu, 16 Sep 2004 03:46:20 -0000 Hello, version 1.62 (http://pf4freebsd.love2party.net/pf_freebsd_1.62.tar.gz) is ready. It brings the (allready announced) passive OS fingerprinting as filter criteria: http://www.benzedrine.cx/pf/msg03089.html Additional it adds missing locks to new table-code from version 1.61 and cleans up the general locking of pf to prepare for Giant removal! You will need to get a copy of the OS Fingerprint database to /etc/pf.os Get it from: http://www.openbsd.org/cgi-bin/cvsweb/src/etc/pf.os http://www.openbsd.org/cgi-bin/cvsweb/~checkout~/src/etc/pf.os?rev=1.1&content-type=text/plain is the latest as of now, but you should check for new versions from time to time. Try "pftcpdump -o -i " to get and idea what OS you want to filter on. Note that the OS guessing only works on (complete, unmodified) SYN packets. Once again: ***This is not a security feature*** Have fun with the release and please report any problems. Max P.S.: $md5 pf_freebsd_1.62.tar.gz 7d6f5dfbacb784afc04ced7c4f48ab2a pf_freebsd_1.62.tar.gz