On Mon, 14 Nov 2005, Nix wrote:
> On Mon, 14 Nov 2005, [EMAIL PROTECTED] moaned:
> > On Monday 14 November 2005 14:59, Nix wrote:
> >> I've long wanted to do the same sort of thing,
> >> the kernel keeps
> >> processing network packets and firewalling and bridging them perfectly
> >> well, but attackers now have *real* trouble changing the configuration.
> >
> > _BLINK_ _BLINK_
>
> That's what I thought when I first heard of it :)
>
> > Is this a _documented_ feature 8-() ?
>
> Not that I know of, but it's been true for a long, long time: before my
> firewall ran UML it used to rely on it, and it's the only feature that
> old firewall had that I'd still like to have back.
>
> It's been true for longer than I've used Linux: Rogier Wolff describes
> it in
> <http://www.redhat.com/archives/linux-security/1997-April/msg00019.html>.
> The top of that thread has someone calling it a problem, and Alan Cox
> promptly follows up and calls it a feature. If Alan says that a feature
> of networking of that vintage is intentional I guess it counts as sort
> of documented. )
Yep, as long as interrupts are alife, networking keeps on working.
That's also the reason why sometimes you can still ping crashed boxes: as long
as interrupts are working, ping will work.
IIRC I read about the above scenario as an actually recommendation for a
safe firewall a long time ago...
Gr{oetje,eeting}s,
Geert
--
Geert Uytterhoeven -- There's lots of Linux beyond ia32 -- [EMAIL PROTECTED]
In personal conversations with technical people, I call myself a hacker. But
when I'm talking to journalists I just say "programmer" or something like that.
-- Linus Torvalds
-------------------------------------------------------
SF.Net email is sponsored by:
Tame your development challenges with Apache's Geronimo App Server. Download
it for free - -and be entered to win a 42" plasma tv or your very own
Sony(tm)PSP. Click here to play: http://sourceforge.net/geronimo.php
_______________________________________________
User-mode-linux-devel mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/user-mode-linux-devel
