R: [rsbac] Re: 1.2.0 backport to 2.2 kernels?

Amon Ott rsbac@rsbac.org
Wed, 27 Feb 2002 10:01:18 +0100


On Wednesday, 27. February 2002 07:35, Alberto Guglielmo wrote:
> To encourage Marc Martinez.....
> Especially if you employ it in a firewall, the 2.4.x kernel has many
> advantages, one for all, iptables!
> I currently have some firewall boxes with 2.4 kernels and RSBAC (1.1.2, I
> wait 1.2 "stable" ...) with full satisfaction, ok, about full ;-)

My own firewall configs have been switched to 2.4 when 2.4.13 came out. As a 
rule of thump, .13 is usually the first really stable version... ;)

You can still use ipchains with the new kernels (what I did some time for 
backwards compatibility). The only thing badly missing is FTP masquerading.

This has been dropped on 2.4.16 with ext3 on board, which is really worth the 
upgrade. I cannot afford firewalls at remote customer sites not to come up 
after a crash.

However, if people really need 2.2, the port could be done.

Amon.
--
http://www.rsbac.org