On Thu, 2013-10-24 at 11:52 +0200, Pablo Neira Ayuso wrote:
> Hi Pekka,
>
> On Tue, Oct 22, 2013 at 04:33:48PM +0300, Pekka Pietikäinen wrote:
> > After a kernel update to 3.11 (feat. commit
> > 681f130f39e10087475383e6771b9366e26bab0c) my "generate fake tcp
> > connections from random ip addresses" app broke.
>
> Did you give a try to revert it and things were working back fine? I
> think the root cause for this behaviour change is not in that patch.
Yes, given that the option is off by default, I do not really understand
the issue.
Its true that the option is currently a bit flawed, but my refactoring
of TCP listener should solve the problem soon. I do not feel necessary
to 'fix' xt_socket --nowildcard right now.
Oh, if the binary is too old, make sure commit
681f130f39e100 is there...
("netfilter: xt_socket: fix broken v0 support")
Thanks
--
To unsubscribe from this list: send the line "unsubscribe netfilter-devel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
