Date: Thu, 16 Sep 2004 03:47:56 -0000 From: Pyun YongHyeon <yongari@kt-is.co.kr> To: pf4freebsd@freelists.org Subject: [pf4freebsd] Re: Possible remote DoS (panic) with scrub rules!!! Message-ID: <20030829034929.GC11397@kt-is.co.kr> In-Reply-To: <006101c36dde$01cb64e0$01000001@max900> References: <006101c36dde$01cb64e0$01000001@max900>
next in thread | previous in thread | raw e-mail | index | archive | help
On Fri, Aug 29, 2003 at 05:31:16AM +0200, Max Laier wrote: > Hello, > > just got a HUB from Daniel regarding a possible remote DoS in pf_norm.c This > might not be a problem if you do not use "scrub"-Rules. > > This regards all versions of pf4freebsd prior 1.63 (which was just released) > and port prior 1.0_7 (just commited by "edwin"). > > Version 1.63 (for tarball users) can be found at: > http://pf4freebsd.love2party.net/pf_freebsd_1.63.tar.gz > MD5 (pf_freebsd_1.63.tar.gz) = d36bef7f8023c891572148c0d3930410 > the patch for the port is commited. > If you don't have pf.os in /etc directory, please copy pf.os to that directory manually. pf.os can be found at: http://www.openbsd.org/cgi-bin/cvsweb/src/etc/pf.os You may not do anything with pfctl without /etc/pf.os. > Please update as soon as possible. > Additional information can be found at: > http://www.openbsd.org/cgi-bin/cvsweb/src/sys/net/pf_norm.c (v1.75) > > Regards, > Max > Regards, Pyun YongHyeon -- Pyun YongHyeon <http://www.kr.freebsd.org/~yongari>;
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030829034929.GC11397>