Re: kern/165939: [ipw] security bug: incomplete firewall rules loaded if tables are used in ipfw.conf

On Sat, 14 Jul 2012, cr...@freebsd.org wrote: http://www.freebsd.org/cgi/query-pr.cgi?pr=165939 Description If user has tables used in /etc/ipfw.conf for example: table 1 add 64.6.108.239 then firewall restart: /etc/rc.d/ipfw start fails with: Line 8:

Re: kern/165939: [ipw] security bug: incomplete firewall rules loaded if tables are used in ipfw.conf

On 14 Jul 2012 18:49, Ian Smith smi...@nimnet.asn.au wrote: On Sat, 14 Jul 2012, cr...@freebsd.org wrote: http://www.freebsd.org/cgi/query-pr.cgi?pr=165939 Description If user has tables used in /etc/ipfw.conf for example: table 1 add 64.6.108.239 then firewall restart:

Re: kern/165939: [ipw] security bug: incomplete firewall rules loaded if tables are used in ipfw.conf

On Sat, 14 Jul 2012 18:59:54 +0100, Chris Rees wrote: On 14 Jul 2012 18:49, Ian Smith smi...@nimnet.asn.au wrote: On Sat, 14 Jul 2012, cr...@freebsd.org wrote: http://www.freebsd.org/cgi/query-pr.cgi?pr=165939 [..] Yes, to such a ruleset you'd need to add 'table all flush' too.

Re: kern/165939: [ipw] security bug: incomplete firewall rules loaded if tables are used in ipfw.conf

Synopsis: [ipw] security bug: incomplete firewall rules loaded if tables are used in ipfw.conf Responsible-Changed-From-To: freebsd-ipfw-secteam Responsible-Changed-By: crees Responsible-Changed-When: Sat Jul 14 21:00:29 UTC 2012 Responsible-Changed-Why: Reassign as per request.