On Tuesday 02 December 2003 10:04 pm, Mike Noyes wrote: > Ah. This is what I was looking for. So, there is probably a rule that > can be generated to stop spoofed packets from egressing the protected > LAN.
There is spoof-protection enabled in the kernel (per Dachstein anyway). IIRC, the compromise wasn't affective w/the Grsecurity patches that Bering uses as well. I'll have to do some verification of this information. -- ~Lynn Avants Linux Embedded Appliance Firewall Developer http://leaf.sourceforge.net http://guitarlynn.homelinux.org:81 ------------------------------------------------------- This SF.net email is sponsored by OSDN's Audience Survey. Help shape OSDN's sites and tell us what you think. Take this five minute survey and you could win a $250 Gift Certificate. http://www.wrgsurveys.com/2003/osdntech03.php?site=8 ------------------------------------------------------------------------ leaf-user mailing list: [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/leaf-user SR FAQ: http://leaf-project.org/pub/doc/docmanager/docid_1891.html
