[TOOL] FireHOL - Stateful Iptables Configuration

From: SecuriTeam (support_at_securiteam.com)
Date: 11/03/04

  • Next message: SecuriTeam: "[NEWS] Chesapeake TFTP Server Directory Traversal and DoS Vulnerabilities" 
    To: list@securiteam.com
Date: 3 Nov 2004 18:05:17 +0200

    The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com
    - - promotion

    The SecuriTeam alerts list - Free, Accurate, Independent.

    Get your security news from a reliable source.
    http://www.securiteam.com/mailinglist.html

    - - - - - - - - -

      FireHOL - Stateful Iptables Configuration
    ------------------------------------------------------------------------

    SUMMARY

    DETAILS

    FireHOL a simple yet powerful way to configure stateful iptables
    firewalls. It can be used for almost any purpose, including control of any
    number of internal/external/virtual interfaces, control of any combination
    of routed traffic, setting up DMZ routers and servers, and all kinds of
    NAT. It provides strong protection (flooding, spoofing, etc.), transparent
    caches, source MAC verification, blacklists, whitelists, and more. Its
    goal is to be completely abstracted and powerful but also easy to use,
    audit, and understand.

    ADDITIONAL INFORMATION

    The information has been provided by <mailto:costa@tsaousis.gr> Costa
    Tsaousis.
    To keep updated with the tool visit the project's homepage at:
    <http://firehol.sourceforge.net/> http://firehol.sourceforge.net/

    ========================================

    This bulletin is sent to members of the SecuriTeam mailing list.
    To unsubscribe from the list, send mail with an empty subject line and body to: list-unsubscribe@securiteam.com
    In order to subscribe to the mailing list, simply forward this email to: list-subscribe@securiteam.com

    ====================
    ====================

    DISCLAIMER:
    The information in this bulletin is provided "AS IS" without warranty of any kind.
    In no event shall we be liable for any damages whatsoever including direct, indirect, incidental, consequential, loss of business profits or special damages.

  • Next message: SecuriTeam: "[NEWS] Chesapeake TFTP Server Directory Traversal and DoS Vulnerabilities"

    Relevant Pages

    • [NT] Multiple Vendor NOS Microsystems getPlus Downloader Stack Buffer Overflow Vulnerability
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... download, install, and update other software through the browser. ... Adobe uses this control ... for web based installations of Adobe Reader. ...
      (Securiteam)
    • [NT] Macrovision InstallShield Update Service ActiveX Unsafe Method Vulnerability
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... Macrovision InstallShield Update Service ActiveX Unsafe Method ... This control is marked "safe for scripting". ...
      (Securiteam)
    • [NT] RealTek HD Audio Codec Driver Local Privilege Escalation
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... overwrite as we can see in the following piece of code, note the memory is ... memory overwrite to divert to flow towards a ring0 shellcode. ... missing an important term in the equation to control the first ...
      (Securiteam)
    • [NT] Shattering SEH III (Progress Bars)
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... techniques been used against the progress bar control. ... for the use of different messages which we use to write our shellcode into ...
      (Securiteam)
    • [NT] HP Mercury Quality Center ActiveX Control ProgColor Buffer Overflow Vulnerability
      ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... HP Mercury Quality Center ActiveX Control ProgColor Buffer Overflow ... Remote exploitation of a buffer overflow vulnerability in an ActiveX ...
      (Securiteam)