Date: Fri, 26 Jan 2001 16:41:28 +0200 From: Mehmet Hinc <marduk@pozitif.net> To: Justin Stanford <jus@security.za.net> Cc: questions@freebsd.org, security@freebsd.org Subject: Re: ipfw security patch problem.. Message-ID: <3A718C97.E45FA754@pozitif.net> References: <Pine.BSF.4.21.0101260756090.397-100000@athena.za.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Justin Stanford wrote: > Hi, > > I upgraded my ipfw yesterday on my 4.0-STABLE system with the patch by > following the instructions to the letter for the security bug discovered > by Aragon Gouveia, and compile and install appeared to go seamlessly. > > However, ipfw now gives me this type of problem: > > [root@athena]~# ipfw add 5000 deny tcp from any to 196.30.167.200 515 via rl0 > 05000 deny tcp from any to 196.30.167.200 515 via rl0 > ip_fw_ctl: empty interface name > ipfw: setsockopt(IP_FW_ADD): Invalid argument > [root@athena]~# > > The interface is most definitely rl0, and this exact ruleset is the same I > have been using for ages with my previous ipfw. Suggestions? > > -- > Justin Stanford > 082 7402741 > jus@security.za.net > www.security.za.net > IT Security and Solutions > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message Yup, I`ve heard this problem and I tried to solve it.I copied /sys/netinet/ip_fw.h to /usr/include/netine and then I recompiled my kernel . After then this problem has disapeared from my box. Mehmet Hinc Yildiz Teknik University >From Turkey To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3A718C97.E45FA754>