[Bug 44] ip_conntrak_ftp / ip_nat_ftp enhancements

bugzilla-daemon@netfilter.org bugzilla-daemon@netfilter.org
Thu, 06 Feb 2003 19:47:37 +0100


https://bugzilla.netfilter.org/cgi-bin/bugzilla/show_bug.cgi?id=44

laforge@netfilter.org changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
             Status|NEW                         |RESOLVED
         Resolution|                            |WONTFIX



------- Additional Comments From laforge@netfilter.org  2003-02-06 19:47 -------
This 'bug' has been discussed at least two or maybe even three years ago on the
netfilter mailinglist(s).  It is not possible to change the current behaviour
(expect data connection to come from same IP as control connection) without
introducing major security risks.

I'm not going to recite the whole explanation of how + why here.  Please try to
read find the answers in the list archives or if you still have questions, ask
them at netfilter-devel@lists.netfilter.org.




------- You are receiving this mail because: -------
You are on the CC list for the bug, or are watching someone who is.