[CALUG] ipt_recent bug
eldonz at atlanticdb.com
Sat Feb 4 14:22:40 CST 2006
In November Marc Curry gave an example using the iptables "recent"
match to block a DOS attack. Unfortunately, the ipt_recent module has
a bug that shows up 24 days later. See
http://nvd.nist.gov/nvd.cfm?cvename=CAN-2005-2873. A patch to
ipt_recent.c is given but it doesn't seem to match up with the source
code I've found. Also, I'm not much of a kernel guy and have no
experience with patches.
Does anyone have a patched version of ipt_recent.c they would be
willing to share?
More information about the lug