On Sat, Oct 04, 2003 at 10:55:57PM +0100, Jorden Verwer wrote: > I'm running a firewall based on OpenBSD 3.0 with pf and scrub enabled. I'd > prefer to keep things this way, because they work. However, with the recent > DoS vulnerability I've become a bit less certain about my firewall's > security. Is OpenBSD 3.0 affected by this vulnerability? I know it's an > unsupported release and I shouldn't be asking this, but can anyone answer me > regardless (and there might also be people who want to know if 3.1 is > vulnerable)?
All of the problems fixed by the patch were introduced into -current after 3.1-release (pf_norm.c 1.34), so 3.0 and 3.1 are not affected and don't need patching. I'd still consider updating to a supported -stable branch, even though this particular problem doesn't require it. The next one might, if and when it is found. Daniel
