RE: CERT Advisory CA-2001-25From: Carson Gaspar (email@example.com)
- Previous message: firstname.lastname@example.org: "[RHSA-2001:107-07] New bugzilla packages are available"
- In reply to: Jeremy Epstein: "RE: CERT Advisory CA-2001-25"
- Next in thread: email@example.com: "Re: CERT Advisory CA-2001-25"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Mon, 10 Sep 2001 17:59:44 -0700 From: Carson Gaspar <firstname.lastname@example.org> To: email@example.com Subject: RE: CERT Advisory CA-2001-25 Message-ID: <159042421.1000144784@athyra>
--On Monday, September 10, 2001 3:20 PM -0400 Jeremy Epstein
> My guess is that this does not affect TIS FWTK... I was told that pretty
> much all of the TIS/FWTK code has been rewritten for Gauntlet over the
> years. So odds are it's Gauntlet-specific.
Whoever told you that was... ummm... differently informed. The new -pdk
proxies have been rewritten. The old-style -gw proxies have been modified,
but _not_ re-written, as I was amazed to discover back in the 4.x days when
I had to patch them for the same bugs I'd fixed in FWTK. All of my fixes
(but not my feature enhancements) got rolled in in the 5.x versions (or in
smap and smapd have had significant changes, but as of 5.5 are still mostly
the same. 6.0's csmap is a re-write.
Rumour has it that the bug is the content scanning portion, which wasn't in
fwtk. But this has not been substantiated. I haven't been motivated to look
at the 5.5 code and see if I can find it or not.
-- Carson Gaspar - firstname.lastname@example.org Queen Trapped in a Butch Body