FreeBSD Security Advisories
-
Hi there,
I believe we don't need to worrie about the 11-1-06 SAs, do we?
Namely this one ftp://ftp.freebsd.org/pub/FreeBSD/CERT/advisories/FreeBSD-SA-06:04.ipfw.asc.
Cheers -
Already addressed and will be included in beta2.
-
Already addressed and will be included in beta2.
I'm not sure im following. Does pfSense include ipfw?
-
Yes, for captive portal.
-
Yes, for captive portal.
Why don't we use pf for captive portal too?
It just doesn't make much sense… -
We had this setup w/ PF but we ran into a problem of not being able to query when the last time a user hit the rule from the webGUI so we put it back to IPFW after everyone kept complaining.
-
I see.
Thanks :). -
I c. thats interesting, guess I could make use of dummynet then.
Is the ipfw moduled loaded at all times? and if loaded will it be unloaded when captive portal is disabled?
-
It's loaded and unloaded as needed.
-
We shouldn't be vulnerable to this anyway as PF loads and will match first before ipfw. PF will drop or otherwise scrub the ICMP before ipfw ever sees it.
–Bill