[geeks] Re: [SunRescue] Help!
Phil Brutsche
geeks at sunhelp.org
Thu Apr 19 13:04:43 CDT 2001
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
A long time ago, in a galaxy far, far way, someone said...
> I will, but I'll probably wait a little bit. A security advisory just
> came out on iptables that allows people to breach your firewall.
But only under certain conditions aka the FTP connection tracking module
has a bug that will let people put arbitrary connections as "allowed" in
the conntrack tables.
Upgrade to 2.4.3+the patch supplied in the advisory and you're good to go
:)
Besides, the capabilities I was referring to can easily be used *without*
the code that has the security flaw.
- --
- ----------------------------------------------------------------------
Phil Brutsche pbrutsch at tux.creighton.edu
GPG fingerprint: 9BF9 D84C 37D0 4FA7 1F2D 7E5E FD94 D264 50DE 1CFC
GPG key id: 50DE1CFC
GPG public key: http://tux.creighton.edu/~pbrutsch/gpg-public-key.asc
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.4 (GNU/Linux)
Comment: For info see http://www.gnupg.org
iD8DBQE63yi9/ZTSZFDeHPwRAnKXAJ9htk6vrOyfQyZ5A2Yi57n3E3rvBwCglsu4
l5Ye5Ep11lEY9zLupaq2FEA=
=14ZD
-----END PGP SIGNATURE-----
More information about the geeks
mailing list