From: [email protected] (Eric W. Biederman) Date: Fri, 19 Jun 2015 10:41:21 -0500
> > Currenlty nf_tables chains added in one network namespace are being > run in all network namespace. The issues are myriad with the simplest > being an unprivileged user can cause any network packets to be dropped. > > Address this by simply not running nf_tables chains in the wrong > network namespace. > > Cc: [email protected] > Signed-off-by: "Eric W. Biederman" <[email protected]> Applied. -- To unsubscribe from this list: send the line "unsubscribe netdev" in the body of a message to [email protected] More majordomo info at http://vger.kernel.org/majordomo-info.html
