FreeBSD Security Advisory FreeBSD-SA-14:19.tcp
n j
nino80 at gmail.com
Tue Sep 16 13:34:46 UTC 2014
Hi,
On Tue, Sep 16, 2014 at 12:14 PM, FreeBSD Security Advisories <
security-advisories at freebsd.org> wrote:
> IV. Workaround
>
> It is possible to defend against these attacks with stateful traffic
> inspection using a firewall. This can be done by enabling pf(4) on
> the system and creating states for every connection. Even a default
> ruleset to allow all traffic would be sufficient to mitigate this
> issue.
>
Any chance of getting more information in Workaround section? Is the
workaround applicable only to pf or IPFW also helps? Perhaps an example
rule?
> VII. References
>
> <URL:http://cve.mitre.org/cgi-bin/cvename.cgi?name=CVE-2004-0230>
>
2004? Wow, that's an old one.
Thanks,
--
Nino
More information about the freebsd-security
mailing list