On 26 Jun 2001, at 10:53, Carric Dooley wrote:
> I think there are some issues currently with the new licensing in
> IPFILTER, which has been all of the BSD's firewall solution for
> sometime. I read somewhere it will not be included in future
> releases of OpenBSD. I have note verified this myself, but it is
> supposed to be taken out of the default install of 2.9. You could
> add it back in yourself of course, but this increases the
> complexity yet another notch (it has to be compiled into the
> kernel).
Yes, there are licensing issues that have surfaced with IPFilter that
are incompatible with the goals of the OpenBSD team. It is true that
IPFilter is gone from OpenBSD 2.9-current. It is *not true* that
IPFilter is "gone from OpenBSD". If you obtain the latest (2.9) CD-
ROM, IPFilter is there. I believe it is correct that 2.9-stable
still has IPFilter in it.
Latest word from Theo and the crew is that OpenBSD will "have its
own" solution to replace IPFilter -- presumably as of 2.10, or
sufficiently late 2.9-current.
They are coding away. Based on OpenSSH, I think everyone in the
OpenBSD world has expectations of a quality replacement for IPFilter.
I haven't heard yet whether they are committed to using the same
interface for rule sets.
There is certainly no question that OpenBSD is in a state of
transition regarding its included packet filtering.
---
#include <disclaimer.h>
Jim Rosenberg
Ross Mould
259 S. College St.
Washington, PA 15301
(724) 222-7006 x 189
E-mail: [EMAIL PROTECTED]
_______________________________________________
Firewalls mailing list
[EMAIL PROTECTED]
http://lists.gnac.net/mailman/listinfo/firewalls
