On Wed, Mar 26, 2008 at 12:47 PM, Jeremy Chadwick <[EMAIL PROTECTED]> wrote:
> This brings up another situation: there's no version number of pf in > FreeBSD that I can find. The OpenBSD docs continually say "as of > OpenBSD x.y". This confuses people, who when using pf under FreeBSD, > have no knowledge of what version of pf we're using. What version is in > RELENG_6? 7? CURRENT? I didn't know until a few minutes ago -- > because I went to cvsweb and had to look up the CVS commit messages > myself: > > http://www.freebsd.org/cgi/cvsweb.cgi/src/sys/contrib/pf/net/pf.c > > Now that I know, I can make appropriate adjustments. But requiring > users to look at CVS commit messages is a bit unrealistic, don't you > think? Maybe I should submit a PR asking that the version of pf pulled > into FreeBSD be kept in the pf(4), pf.conf(5), and pfctl(8) manpages? > What do you suggest? > > > Our cousins over the road in the OpenBSD neighbourhood have done this > > precisely because of the issues caused in prior versions of PF by using > > stateless rules and/or establishing TCP state on anything other than the > 3 > > way handshake. > > Yep, aware of that -- except that users have no idea as to whether the > implicit "keep state" on every rule applies to FreeBSD or not, or if > it's "safe" or not, because OpenBSD != FreeBSD. They read the OpenBSD > docs and go "errr... so what version is FreeBSD using?" > From: http://pf4freebsd.love2party.net/ Status The port is part of the base system of FreeBSD 5.X as of March, 8th 2004. - In RELENG_5 - pf is at OpenBSD 3.5 - In RELENG_6 - pf is at OpenBSD 3.7 - In RELENG_7 - pf is at OpenBSD 4.1 - In HEAD - pf is at OpenBSD 4.1 - at this time. - It has been said several times on the list as well. :) _______________________________________________ freebsd-pf@freebsd.org mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-pf To unsubscribe, send any mail to "[EMAIL PROTECTED]"
