[CALUG] ipt_recent bug

Eldon Ziegler eldonz at atlanticdb.com
Sat Feb 4 14:22:40 CST 2006


In November Marc Curry gave an example using the iptables "recent" 
match to block a DOS attack. Unfortunately, the ipt_recent module has 
a bug that shows up 24 days later. See 
http://nvd.nist.gov/nvd.cfm?cvename=CAN-2005-2873. A patch to 
ipt_recent.c is given but it doesn't seem to match up with the source 
code I've found. Also, I'm not much of a kernel guy and have no 
experience with patches.

Does anyone have a patched version of ipt_recent.c they would be 
willing to share?

Thanks
Eldon Ziegler



More information about the lug mailing list