[luau] Fwd: [Linux Netfilter] Security Advisory

[MonMotha]

For those of you not on the netfilter announce list, this might be of 
concern if you use Linux as a NAT gateway (specifically using the DNAT 
target, which is often used for port forwards).

Basically, if there is an error generated by the NAT box against a DNAT 
rule, the ICMP error may contain information you'd rather the external 
world not know (about the final destination after NAT).

A patch to fix the bug is available from the netfilter web site.

--MonMotha

-------- Original Message --------
Subject: Security Advisory
Date: Wed, 8 May 2002 16:07:05 +0200
From: Harald Welte <laforge at gnumonks.org>
To: netfilter-announce at lists.samba.org
CC: Netfilter Mailinglist <netfilter at lists.samba.org>,   Netfilter 
Development Mailinglist <netfilter-devel at lists.samba.org>

Hi!

Unfortunately there is a very unpopular announcement to be made on this
list:  A netfilter security advisory.

Phillipe Biondi has been reporting this bug and preparing the advisory,
the [still preliminary] solution is by Rusty Russell and James Morris.

-- 
Live long and prosper
- Harald Welte / laforge at gnumonks.org               http://www.gnumonks.org/
============================================================================
GCS/E/IT d- s-: a-- C+++ UL++++$ P+++ L++++$ E--- W- N++ o? K- w--- O- M+
V-- PS++ PE-- Y++ PGP++ t+ 5-- !X !R tv-- b+++ !DI !D G+ e* h--- r++ y+(*)

-------------- next part --------------
An embedded and charset-unspecified text was scrubbed...
Name: advisory
URL: <http://lists.freesoftwarehawaii.org/pipermail/luau-freesoftwarehawaii.org/attachments/20020508/0eef8063/attachment-0001.txt>