|
|
* kjell@xxxxxxxxxxx <kjell@xxxxxxxxxxx> [2009-03-16 17:14]:
> > here, http://tinyurl.com/dd34tc, is a patch against an older version
> > of pf(4), the one present in FreeBSD, which allows to nat ftp
> > correctly with pf(4) without the need of a proxy.
> > I am forwarding this here asking about how interested would be OpenBSD
> > folks about making a patch against the newest pf(4) present in
> > OpenBSD?
> > Chances that it can be merged in cvs as an extra module of pf.....
>
> Oh wow. Is that actually an in-kernel FTP proxy?
>
> Getting rid of such a beast was one of the original design goals
> of pf...
>
Exactly. But hey, it's FreeBSD, where numbers are so 1985 and it's
better to parse xml in the kernel. if you're already parsing xml,
what's a little bit of untrusted string bashing for ftp :)
|
|