Several people have noticed that SecuriTeam.com is reporting a "FreeBSD ECE flag ipfw protection bypass" exploit. In an effort to save time, let me say this publicly: SecuriTeam.com is three years out of date. This problem was fixed in FreeBSD 3.5-STABLE and 4.2-STABLE in January 2001, and reported in Security Advisory FreeBSD-SA-01:08. Colin Percival
Apparently Analagous Threads
- [Bug 928] New: ECN: --ecn-tcp-ece and --ecn-ip-ect is not supported
- ipfw table add problem
- how to get IPFW rules for SMTP server behind NAT server "right"? (freebsd-security: message 1 of 20)
- FreeBSD Security Advisory FreeBSD-SA-05:13.ipfw
- FreeBSD Security Advisory FreeBSD-SA-05:13.ipfw
Wisdom of the Ancients
