Date: Mon, 31 Jul 2000 13:54:53 -0700 From: "Jordan K. Hubbard" <jkh@zippy.osd.bsdi.com> To: Darren Reed <avalon@coombs.anu.edu.au> Cc: trish@bsdunix.net (Siobhan Patricia Lynch), freebsd-security@FreeBSD.ORG Subject: Re: ipf or ipfw (was: log with dynamic firewall rules) Message-ID: <2528.965076893@localhost> In-Reply-To: Your message of "Mon, 31 Jul 2000 23:23:55 %2B1000." <200007311323.XAA29849@cairo.anu.edu.au>
next in thread | previous in thread | raw e-mail | index | archive | help
> Well, had you gone the OpenBSD route you wouldn't have introduced a number > of bugs which can lead to a system doing filtering on bridged packets going > "boom". This is the sort of careless activity that leads to security holes I think you're probably forgetting that there are few alternatives to ipfw in FreeBSD right now. ipfilter is sort of an alternative, but it's also been very poorly maintained until recently in FreeBSD and the author doesn't respond to bug reports or ipfilter related discussions when they come up in various FreeBSD mailing lists. :) - Jordan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?2528.965076893>