[Bug 83] New: Owner matching support broken in Kernel 2.4.20
bugzilla-daemon@netfilter.org
bugzilla-daemon@netfilter.org
Wed, 23 Apr 2003 15:40:35 +0200
https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=83
Summary: Owner matching support broken in Kernel 2.4.20
Product: iptables userspace
Version: 1.2.7a
Platform: i386
OS/Version: Debian GNU/Linux
Status: NEW
Severity: blocker
Priority: P2
Component: iptables
AssignedTo: laforge@netfilter.org
ReportedBy: outsider@key2peace.org
CC: netfilter-buglog@lists.netfilter.org
As already pointed out, the -m owner function is broken if iptables is used in
combination with 2.4.20, I upgraded the kernel to a plain 2.4.20 as well, later
added grsec, then also tried the patches to .21-pre5 and added the ptrace
bugfix. I am using the owner match support to make sure users on my shellserver
are unable to use certain IP's for there outgoing connections (private IP
restrictions) and it used to work fine under 2.4.19, however, when I use exactly
the same commands, iptables spews out the 'target problem' error. I mailed
laforge@ before including the complete strace when doing this. Looking in the
user mailinglists also showed other ppl having this issue, but no decent answers
can be found there.Since I never got a reply I decided to post it as bug.
------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.