From owner-freebsd-pf@FreeBSD.ORG  Tue May  8 08:31:17 2007
Return-Path: <owner-freebsd-pf@FreeBSD.ORG>
X-Original-To: freebsd-pf@freebsd.org
Delivered-To: freebsd-pf@freebsd.org
Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52])
	by hub.freebsd.org (Postfix) with ESMTP id E7ADD16A406
	for <freebsd-pf@freebsd.org>; Tue,  8 May 2007 08:31:17 +0000 (UTC)
	(envelope-from volker@vwsoft.com)
Received: from frontmail.ipactive.de (frontmail.maindns.de [85.214.95.103])
	by mx1.freebsd.org (Postfix) with ESMTP id ADA2013C48A
	for <freebsd-pf@freebsd.org>; Tue,  8 May 2007 08:31:16 +0000 (UTC)
	(envelope-from volker@vwsoft.com)
Received: from mail.vtec.ipme.de (Q7c93.q.ppp-pool.de [89.53.124.147])
	(using TLSv1 with cipher DHE-RSA-AES256-SHA (256/256 bits))
	(No client certificate requested)
	by frontmail.ipactive.de (Postfix) with ESMTP id 9B2AD128829
	for <freebsd-pf@freebsd.org>; Tue,  8 May 2007 10:31:10 +0200 (CEST)
Received: from cesar.sz.vwsoft.com (cesar.sz.vwsoft.com [192.168.16.3])
	by mail.vtec.ipme.de (Postfix) with ESMTP id 840B93F9E1
	for <freebsd-pf@freebsd.org>; Tue,  8 May 2007 10:30:39 +0200 (CEST)
Message-ID: <4640352E.60109@vwsoft.com>
Date: Tue, 08 May 2007 10:30:38 +0200
From: Volker <volker@vwsoft.com>
User-Agent: Thunderbird 2.0.0.0 (X11/20070420)
MIME-Version: 1.0
To: "FreeBSD (PF)" <freebsd-pf@freebsd.org>
X-Enigmail-Version: 0.95.0
Content-Type: text/plain; charset=ISO-8859-1
Content-Transfer-Encoding: 7bit
X-VWSoft-MailScanner: Found to be clean
X-MailScanner-From: volker@vwsoft.com
X-ipactive-MailScanner-Information: Please contact the ISP for more information
X-ipactive-MailScanner: Found to be clean
X-ipactive-MailScanner-From: volker@vwsoft.com
Subject: pf.os fingerprinting does not seem to load by default
X-BeenThere: freebsd-pf@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Technical discussion and general questions about packet filter
	\(pf\)" <freebsd-pf.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-pf>
List-Post: <mailto:freebsd-pf@freebsd.org>
List-Help: <mailto:freebsd-pf-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-pf>,
	<mailto:freebsd-pf-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Tue, 08 May 2007 08:31:18 -0000

Hi!

I think I've trapped into a bug with pf's fingerprinting.

While checking a modified ruleset with `pfctl -vvv -gnf ...' pfctl
told me it doesn't know anything about an OS fingerprint called
"Windows". I've checked with `pfctl -so' but all fingerprints have
been displayed (even Windows). I tried the same using "Windows XP" and
others but pfctl resisted to find these fingerprints.

As a last resort I tried an explicit 'set fingerprints "/etc/pf.os"'
and pfctl was happy.

According to pf.conf(5), pf loads the fingerprint database by default
from /etc/pf.os. Either the man page or pfctl's behavior is wrong. Can
please somebody check if time permits?

Thx,

Volker