From mboxrd@z Thu Jan  1 00:00:00 1970
From: Eric Leblond <eric@regit.org>
Subject: Re: doc: Secure use of iptables and connection tracking helpers
Date: Mon, 28 Nov 2011 23:58:00 +0100
Message-ID: <1322521080.24083.1.camel@tiger.regit.org>
References: <1322501576.20587.22.camel@tiger.regit.org>
	 <alpine.LNX.2.01.1111282118430.27238@frira.zrqbmnf.qr>
Mime-Version: 1.0
Content-Type: multipart/signed; micalg="pgp-sha1"; protocol="application/pgp-signature";
	boundary="=-fZZWPJt/2c0XJqKSfyBw"
Cc: netfilter@vger.kernel.org, netfilter-devel@vger.kernel.org,
	pablo@netfilter.org, kaber@trash.net
To: Jan Engelhardt <jengelh@medozas.de>
Return-path: <netfilter-owner@vger.kernel.org>
In-Reply-To: <alpine.LNX.2.01.1111282118430.27238@frira.zrqbmnf.qr>
Sender: netfilter-owner@vger.kernel.org
List-Id: netfilter-devel.vger.kernel.org


--=-fZZWPJt/2c0XJqKSfyBw
Content-Type: text/plain; charset="UTF-8"
Content-Transfer-Encoding: quoted-printable

Hello,

On Mon, 2011-11-28 at 21:19 +0100, Jan Engelhardt wrote:
> On Monday 2011-11-28 18:32, Eric Leblond wrote:
>=20
> >Hello,
> >
> >Pablo Neira Ayuso, Patrick McHardy and I have worked on a document we've
> >called "Secure use of iptables and connection tracking helpers".
> >
> >This is a guide describing how to use securely the connection tracking
> >helpers. This is a recommended reading for all Netfilter/Iptables users.
> >
> >HTML version: http://home.regit.org/netfilter-en/secure-use-of-helpers/
> >PDF version:
> >http://home.regit.org/wp-content/uploads/2011/11/helper-recommandation.p=
df
>=20
> Is this available in a text/{latex,plain,etc.} source available, so one=
=20
> can submit changes against?

I've just setup a github repository to host the file. It is available
here:
	https://github.com/regit/secure-conntrack-helpers

BR,
--=20
Eric Leblond=20
Blog: http://home.regit.org/

--=-fZZWPJt/2c0XJqKSfyBw
Content-Type: application/pgp-signature; name="signature.asc"
Content-Description: This is a digitally signed message part
Content-Transfer-Encoding: 7bit

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)

iEUEABECAAYFAk7UEfgACgkQnxA7CdMWjzIQhwCYkzNb+En82FtHvyVje/cD05qH
GwCfQdwuCOkSK3Vq9nm4qiTwGUfsxwA=
=zyi4
-----END PGP SIGNATURE-----

--=-fZZWPJt/2c0XJqKSfyBw--