> > > nu bag mana in foc.
> >
> > bine faci...
> bag eu :)
> iptables -I INPUT -p tcp --dport 80 -m string --string .ida -m state --state
> ESTABLISHED -j REJECT --reject-with tcp-reset
>
> netstat nu arata nici un Apache in FIN_WAIT{1,2} or anythin else.
>
eu am zis doar ce au spus alde guru aia dupa netfilter.
> tocmai l-am testat si merge ok.
>
> BTW, la compilare a trebuit sa fac o mica modificare in libipt_string.c:
> - 47 if (strlen(s) <= BM_MAX_LEN) strcpy(info->string, s);
> + 47 if (strlen(s) <= BM_MAX_NLEN) strcpy(info->string, s);
>
> nu exista BM_MAX_LEN.
#define BM_MX_LEN 256
et voila ... acum exista
>
> -- teodor
Eugen
>
>
---
Send e-mail to '[EMAIL PROTECTED]' with 'unsubscribe rlug' to
unsubscribe from this list.
