20 Aug 11:55
address inversion of conntrack match
From: Stanislav <owl <at> shee.org>
Subject: address inversion of conntrack match
Newsgroups: gmane.linux.openwall.user
Date: 2007-08-20 09:59:06 GMT
Expires: This article expires on 2007-09-03
Subject: address inversion of conntrack match
Newsgroups: gmane.linux.openwall.user
Date: 2007-08-20 09:59:06 GMT
Expires: This article expires on 2007-09-03
JFYI:
OWL uses iptables 1.2.11 and i came
into that place where my iptables rules
shows an inversion bug in iptables-save,
libipt_conntrack.
The fix of the address inversion of
conntrack match comes from Tom Eastep.
And was merged into iptables 1.3.4.
--- iptables-1.3.3/extensions/libipt_conntrack.c~ 2005-02-19
11:19:17.000000000 -0800
+++ iptables-1.3.3/extensions/libipt_conntrack.c 2005-09-14
14:58:12.000000000 -0700
@@ -414,8 +414,8 @@
{
char buf[BUFSIZ];
- if (inv)
- fputc('!', stdout);
+ if (inv)
+ printf("! ");
if (mask->s_addr == 0L && !numeric)
printf("%s ", "anywhere");
Regards
Stanislav
--
--
To unsubscribe, e-mail owl-users-unsubscribe <at> lists.openwall.com and reply
to the automated confirmation request that will be sent to you.
RSS Feed