From owner-FreeBSD-users-jp@jp.FreeBSD.org Sat Nov 30 08:05:48 2002
Received: (from daemon@localhost)
	by castle.jp.FreeBSD.org (8.11.6+3.4W/8.11.3) id gATN5mo63626;
	Sat, 30 Nov 2002 08:05:48 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from ld0.pv.ryuhoku.jp (nrg.ryuhoku.jp [218.44.161.150])
	by castle.jp.FreeBSD.org (8.11.6+3.4W/8.11.3) with ESMTP/inet id gATN5l263586
	for <FreeBSD-users-jp@jp.FreeBSD.org>; Sat, 30 Nov 2002 08:05:47 +0900 (JST)
	(envelope-from kouya@ryuhoku.jp)
Received: from g6333 (g6333.pv.ryuhoku.jp [192.168.200.205])
	by ld0.pv.ryuhoku.jp (8.11.6/8.11.6) with SMTP id gATN5fQ10894
	for <FreeBSD-users-jp@jp.FreeBSD.org>; Sat, 30 Nov 2002 08:05:42 +0900 (JST)
	(envelope-from kouya@ryuhoku.jp)
Message-ID: <002901c297fb$d6b0ed60$cdc8a8c0@pv.ryuhoku.jp>
From: "kouya" <kouya@ryuhoku.jp>
To: <FreeBSD-users-jp@jp.FreeBSD.org>
References: <006c01c2973c$b38a1c40$cdc8a8c0@pv.ryuhoku.jp> <3DE72540.8020306@ba2.so-net.ne.jp>
MIME-Version: 1.0
Content-Type: text/plain;
	charset="iso-2022-jp"
Content-Transfer-Encoding: 7bit
X-Priority: 3
X-MSMail-Priority: Normal
X-Mailer: Microsoft Outlook Express 5.50.4920.2300
X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4920.2300
Reply-To: FreeBSD-users-jp@jp.FreeBSD.org
Precedence: list
Date: Sat, 30 Nov 2002 08:04:25 +0900
X-Sequence: FreeBSD-users-jp 72409
Subject: [FreeBSD-users-jp 72409] Re: ipfw2
 =?ISO-2022-JP?B?GyRCJEckThsoQg==?= gid
Errors-To: owner-FreeBSD-users-jp@jp.FreeBSD.org
Sender: owner-FreeBSD-users-jp@jp.FreeBSD.org
X-Originator: kouya@ryuhoku.jp
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+021111


----- Original Message -----
$BAw?.<T(B : "Masashi Masuda" <mmasuda@ba2.so-net.ne.jp>
$B08@h(B : <FreeBSD-users-jp@jp.FreeBSD.org>
$BAw?.F|;~(B : 2002$BG/(B11$B7n(B29$BF|(B 17:28
$B7oL>(B : [FreeBSD-users-jp 72393] Re: ipfw2 $B$G$N(B gid


> $BA}ED$G$9!#(B
>
> $B$:$P$j0J2<$N8=>]$@$H;W$&$N$G$9$,!"$$$+$,$G$7$g$&!)(B
>
> http://www.jp.freebsd.org/cgi/query-pr.cgi?pr=42579
> http://www.jp.freebsd.org/cgi/query-pr.cgi?pr=44929
>

$BM-$jFq$&8f:B$$$^$9(B
$B$3$N%Z!<%8Kx$O!"8!:w$7$F$$$^$;$s$G$7$?!#(B

IPFW2 rule parser (both in -STABLE and -CURRENT) does not correctly handle
uid/gid specifiers:

 ipfw add deny all from x.y.z.t to any uid jack
 ipfw add deny all from x.y.z.t to any uid mary

will yield:

?ab00          0          0 deny ip from x.y.z.t to any uid root
?ac00          0          0 deny ip from x.y.z.t to any uid root
See above.

$B4V0c$$$^$/$3$N>uBV$G$9(B
$BL@F|$K$G$b;n$7$F$_$^$9(B

http://tech.ryuhoku.jp $B$N(B host nsg $B$G;HMQ$7$F$$$^$9(B

$B1:8}9LLi(B

