bugzilla-daemon@netfilter.org
2003-Apr-23 13:40 UTC
[Bug 83] New: Owner matching support broken in Kernel 2.4.20
https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=83 Summary: Owner matching support broken in Kernel 2.4.20 Product: iptables userspace Version: 1.2.7a Platform: i386 OS/Version: Debian GNU/Linux Status: NEW Severity: blocker Priority: P2 Component: iptables AssignedTo: laforge@netfilter.org ReportedBy: outsider@key2peace.org CC: netfilter-buglog@lists.netfilter.org As already pointed out, the -m owner function is broken if iptables is used in combination with 2.4.20, I upgraded the kernel to a plain 2.4.20 as well, later added grsec, then also tried the patches to .21-pre5 and added the ptrace bugfix. I am using the owner match support to make sure users on my shellserver are unable to use certain IP's for there outgoing connections (private IP restrictions) and it used to work fine under 2.4.19, however, when I use exactly the same commands, iptables spews out the 'target problem' error. I mailed laforge@ before including the complete strace when doing this. Looking in the user mailinglists also showed other ppl having this issue, but no decent answers can be found there.Since I never got a reply I decided to post it as bug. ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
Possibly Parallel Threads
- [Bug 83] Owner matching support broken in Kernel 2.4.20
- [Bug 24] When upgrading to 2.4.20 the owner-match doesn't work anymore.
- [Bug 527] New: the check make target has a greedy debug grep
- [Bug 469] New: recent match doesn't triger with --hitcount > 20
- data corrupting bug in 2.4.20 ext3, data=journal