From owner-freebsd-stable@FreeBSD.ORG Wed Dec 30 08:50:23 2009 Return-Path: Delivered-To: freebsd-stable@FreeBSD.ORG Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 8D35D106568B for ; Wed, 30 Dec 2009 08:50:23 +0000 (UTC) (envelope-from stephane.rochoy@netasq.com) Received: from work.netasq.com (gateway.netasq.com [91.212.116.2]) by mx1.freebsd.org (Postfix) with ESMTP id 1EAFF8FC1A for ; Wed, 30 Dec 2009 08:50:22 +0000 (UTC) Received: from localhost (localhost [127.0.0.1]) by work.netasq.com (Postfix) with ESMTP id A22FB3272340; Wed, 30 Dec 2009 09:33:37 +0100 (CET) X-Virus-Scanned: amavisd-new at netasq.com Received: from work.netasq.com ([127.0.0.1]) by localhost (work.netasq.com [127.0.0.1]) (amavisd-new, port 10024) with ESMTP id lBsz-Ihosivu; Wed, 30 Dec 2009 09:33:28 +0100 (CET) Received: from cthulhu.netasq.com (unknown [10.1.42.11]) by work.netasq.com (Postfix) with ESMTP id 306013272345; Wed, 30 Dec 2009 09:33:28 +0100 (CET) Received: by cthulhu.netasq.com (Postfix, from userid 1001) id 96D5C1707A; Wed, 30 Dec 2009 09:32:45 +0100 (CET) Date: Wed, 30 Dec 2009 09:32:45 +0100 From: Stephane Rochoy To: freebsd-stable@FreeBSD.ORG, brian@brianwhalen.net Message-ID: <20091230083245.GD50942@cthulhu.netasq.com> References: <4B3A2A02.1090509@brianwhalen.net> <200912291946.nBTJkvvU017357@lurza.secnetix.de> MIME-Version: 1.0 Content-Type: multipart/signed; protocol="application/x-pkcs7-signature"; micalg=sha1; boundary="mSxgbZZZvrAyzONB" Content-Disposition: inline In-Reply-To: <200912291946.nBTJkvvU017357@lurza.secnetix.de> User-Agent: Mutt/1.5.20 (2009-06-14) Cc: Subject: Re: Hacked - FreeBSD 7.1-Release X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 30 Dec 2009 08:50:23 -0000 --mSxgbZZZvrAyzONB Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Tue, Dec 29, 2009 at 08:46:57PM +0100, Oliver Fromme wrote: > Brian W. wrote: [...] > That's probably because OpenBSD doesn't have mac_portacl(4). ;-) [...] Arf, but pf allow to regulate traffic according to the user that own the socket, e.g., pass from any to any port www user www :p --=20 Stephane Rochoy () ascii ribbon campaign / Against HTML e-mail=20 /\ www.asciiribbon.org / and proprietary attachments --mSxgbZZZvrAyzONB Content-Type: application/x-pkcs7-signature Content-Disposition: attachment; filename="smime.p7s" Content-Transfer-Encoding: base64 MIINQgYJKoZIhvcNAQcCoIINMzCCDS8CAQExCzAJBgUrDgMCGgUAMAsGCSqGSIb3DQEHAaCC Co4wggaEMIIFbKADAgECAgpwxrFIFmvykGsCMA0GCSqGSIb3DQEBBAUAMIGRMQswCQYDVQQG EwJGUjENMAsGA1UECBMETm9yZDEaMBgGA1UEBxMRVmlsbGVuZXV2ZSBkJ0FzY3ExLjAsBgNV BAoTJU5FVEFTUSAtIFNlY3VyZSBJbnRlcm5ldCBDb25uZWN0aXZpdHkxJzAlBgNVBAsTHk5F VEFTUSBDZXJ0aWZpY2F0aW9uIEF1dGhvcml0eTAeFw0wOTA5MjkxMTQ2MTNaFw0xMTA5Mjkx MTQ2MTNaMIHWMQswCQYDVQQGFAJGUjENMAsGA1UECBQETm9yZDEuMCwGA1UEChQlTkVUQVNR IC0gU2VjdXJlIEludGVybmV0IENvbm5lY3Rpdml0eTEnMCUGA1UECxQeTkVUQVNRIENlcnRp ZmljYXRpb24gQXV0aG9yaXR5MRowGAYDVQQHFBFWaWxsZW5ldXZlIGQnQXNjcTEYMBYGA1UE AxQPU3RlcGhhbmUgUk9DSE9ZMSkwJwYJKoZIhvcNAQkBFhpzdGVwaGFuZS5yb2Nob3lAbmV0 YXNxLmNvbTCCASIwDQYJKoZIhvcNAQEBBQADggEPADCCAQoCggEBAKXiMFek3gMYSGoNWedm bQ+5tKk70rMulCMxmuVozqZPL/p+KGGD6Nb556/bRAVg6yXD+yROweSzMRML2XbWCS0V6zRF MMJciQ9zmNYGzFUnijcN5TXpBHwc5M4hwpDg6dw3a0mrSU3A+g989maipJ2IdGIyZIvaOCCZ z9ff3e2TTgHblrcNrsgFfyixp7RLBPxKcNzJj78BxHGTlW1sqsdgfF04/4RiFtbijmhoIZY1 xIzPGhGhFaguvFhqy9oF/dhQKoSzG5zSzAtJ9ygnYuvnL86MYNxXGzgduzCAbX9hIXU/1CaP f+LxMcnFxw2E9rcdoLO+hdjrfRmA1q8uw58CAwEAAaOCApUwggKRMAwGA1UdEwEB/wQCMAAw HQYDVR0OBBYEFIUyJrM/zHBAnQ1APzsCGDlTascJMIG+BgNVHSMEgbYwgbOAFCcq6x3ZRNo6 F3NqCSAgySWo+X+yoYGXpIGUMIGRMQswCQYDVQQGEwJGUjENMAsGA1UECBMETm9yZDEaMBgG A1UEBxMRVmlsbGVuZXV2ZSBkJ0FzY3ExLjAsBgNVBAoTJU5FVEFTUSAtIFNlY3VyZSBJbnRl cm5ldCBDb25uZWN0aXZpdHkxJzAlBgNVBAsTHk5FVEFTUSBDZXJ0aWZpY2F0aW9uIEF1dGhv cml0eYIBADAOBgNVHQ8BAf8EBAMCBeAwEQYJYIZIAYb4QgEBBAQDAgWgMCsGCSsGAQQBgjcU AgQeHhwAUwBtAGEAcgB0AGMAYQByAGQATABvAGcAbwBuMCkGA1UdJQQiMCAGCCsGAQUFBwME BggrBgEFBQcDAgYKKwYBBAGCNxQCAjA1BgNVHREELjAsoCoGCisGAQQBgjcUAgOgHAwac3Rl cGhhbmUucm9jaG95QG5ldGFzcS5jb20wgc0GA1UdHwSBxTCBwjBaoFigVoZUbGRhcDovL3Br aS5uZXRhc3EuY29tL2NuPWZ3Y2Esb3U9Y2FzLG89bmV0YXNxLGRjPWZyP2NlcnRpZmljYXRl UmV2b2NhdGlvbkxpc3Q7YmluYXJ5MDigNqA0hjJodHRwOi8vaW50cmFuZXQubmV0YXNxLmNv bS9pbnRyYW5ldC9wa2kvbmV0YXNxLmNybDAqoCigJoYkaHR0cDovL3d3dy5uZXRhc3EuY29t L3BraS9uZXRhc3EuY3JsMB8GCWCGSAGG+EIBDQQSFhBVc2VyIENlcnRpZmljYXRlMA0GCSqG SIb3DQEBBAUAA4IBAQABKQWU3H8qa+azRM1KAB2/k2z0VhNEGT7SLn1MVvWmkvi1bDmLHdlk /ObLCIazQ91CtjRIZx7o+Fe+Uf5H2P2MFz4ctVzBeUaLBTVXfOFCs423ZkDSQxnXGhwseJaT MbpOaqWzIM0zqileAcI+z/nKlensTwEWjg0hFEwpTJrsoLfx8ecx4ZQNkZPjOguBTRwpOfh/ uQqYR2ADN3LEP0PI1aX4KbM5Vil3BRCGuL+avC4sGWZBP7Qi6mRoNqL+BCB/pV1sejLSWRdR hebpm0MGfd+9FEGLJAuSuv8BCcZjfqUdrsRjOBYRa/4poYXOUu6hF6x0o0VJopsSO2d4YuMj MIIEAjCCAuqgAwIBAgIBADANBgkqhkiG9w0BAQQFADCBkTELMAkGA1UEBhMCRlIxDTALBgNV BAgTBE5vcmQxGjAYBgNVBAcTEVZpbGxlbmV1dmUgZCdBc2NxMS4wLAYDVQQKEyVORVRBU1Eg LSBTZWN1cmUgSW50ZXJuZXQgQ29ubmVjdGl2aXR5MScwJQYDVQQLEx5ORVRBU1EgQ2VydGlm aWNhdGlvbiBBdXRob3JpdHkwHhcNMDIwMjE5MTIzNDU1WhcNMjIwMjE0MTIzNDU1WjCBkTEL MAkGA1UEBhMCRlIxDTALBgNVBAgTBE5vcmQxGjAYBgNVBAcTEVZpbGxlbmV1dmUgZCdBc2Nx MS4wLAYDVQQKEyVORVRBU1EgLSBTZWN1cmUgSW50ZXJuZXQgQ29ubmVjdGl2aXR5MScwJQYD VQQLEx5ORVRBU1EgQ2VydGlmaWNhdGlvbiBBdXRob3JpdHkwggEiMA0GCSqGSIb3DQEBAQUA A4IBDwAwggEKAoIBAQDBgE+Let5/q3S24kyiPlHgfuxr5YxJnAOHhceNlXl7o/os5vKuV4Lq g0UNkmuAG0qT1LDN+ed/ibfFzRBL2QoI8sXAumYgrdELHQrhhiL64GusvfjuQfhQ9+sjoq+t hwWkbdjAVlQr7stmf9j0dIHqfiC92IKTtyaS4WvWJ8W0NhmqS01Syz3JAI+qHR311d+6FFXy /KCC9WRx9NlwLJWlFoNhoObSPfRSttrrYqwrF+HpwQC3qSY9TG+IZVqgSKJoAENlVK7o+NLX uoNxlpDOWfCEtpwrIzXNHv6W98VHTf+HqbwlgYE8w/vNxwfa4l+5+H45/cC858IVkVw2HMcL AgMBAAGjYzBhMB0GA1UdDgQWBBQnKusd2UTaOhdzagkgIMklqPl/sjAfBgNVHSMEGDAWgBQn Kusd2UTaOhdzagkgIMklqPl/sjAPBgNVHRMBAf8EBTADAQH/MA4GA1UdDwEB/wQEAwIBBjAN BgkqhkiG9w0BAQQFAAOCAQEAlyWoU39apiaFxmVdpuvDoolA2r9MrpMsMfPBlVzKOfRCG6Md Gv4RxWloTWkhLh+OzLDOkg0Td970NKULgjPJ6oOrcS0zh5ANJebhhEYtmnxfYzlN1xybGUSU OBnOVVcw6Wj8SGGHi+rNJtzUzgUR8ROIRX68tfkxpYQcfx2bOUQvrfaY6Z7X1Ak3oFAok+YI KPVVvEkOslKkXTWRcUlS3KsDSKWsQbSYD4UsWN+xa5lfNgQ+O/X8Ug8yVKcIKJbxlLPCy1Bf YGEsSLS6BklGlqRUxj9OR2gsQSti3SaNkP53+hcVHtA3MzEAekMQ+aVlGi0/Vbuw7qSkE/uX KH9hzjGCAnwwggJ4AgEBMIGgMIGRMQswCQYDVQQGEwJGUjENMAsGA1UECBMETm9yZDEaMBgG A1UEBxMRVmlsbGVuZXV2ZSBkJ0FzY3ExLjAsBgNVBAoTJU5FVEFTUSAtIFNlY3VyZSBJbnRl cm5ldCBDb25uZWN0aXZpdHkxJzAlBgNVBAsTHk5FVEFTUSBDZXJ0aWZpY2F0aW9uIEF1dGhv cml0eQIKcMaxSBZr8pBrAjAJBgUrDgMCGgUAoIGxMBgGCSqGSIb3DQEJAzELBgkqhkiG9w0B BwEwHAYJKoZIhvcNAQkFMQ8XDTA5MTIzMDA4MzI0NVowIwYJKoZIhvcNAQkEMRYEFAOUqnD3 87Fkb0X1O6INo1fxIGvVMFIGCSqGSIb3DQEJDzFFMEMwCgYIKoZIhvcNAwcwDgYIKoZIhvcN AwICAgCAMA0GCCqGSIb3DQMCAgFAMAcGBSsOAwIHMA0GCCqGSIb3DQMCAgEoMA0GCSqGSIb3 DQEBAQUABIIBAAetSNUjiurxfwJ58u5Uc1mNHQTldn/Ypiny25YKw7w5ARxz5NGf+0s0Phhp 7eNqO3atRPbgy2qJqyqOh78DRRENjc/hhiFjTl6xgCRTZSmX6gZKy9jlP463ztz9EV9uZfyg U3KrYLIJOlCgbuBFKZML7yKirWVpf1796BPqR8i0TXoW6aaoRnyqGtnjvukdBzSWZbht8nLD Xa64Yo+/e/mPPGcMyp2sj5DQAJ6AjPSKlz5G0RoiUA1NKbP74R6BslZjjn4tuRclwcqb7Rl1 YqT0Nz1f8fbR/HZfcVhFvq02cu4JWp4K8YtruvzC7ZIJwUbOSZullECYH1Z5zIXOwcA= --mSxgbZZZvrAyzONB--