* Robert Rottscholl wrote on Mon, Mar 18, 2002 at 12:26 +0100:
Steffen Dettmer wrote: [...firewall restart races...]
condition with a unprotected system, or it's to closed, this results in a race condition with wrongly dropped or rejected packets.
i want to point at another thing. It depends on the default target of every table/chain if the system is opened during restart.
Yes, of course you are correct, but I think it's the same thing I told?
SuSEFirewall's default target's are dropped.
So this would result in a unwanted packet drop. With UDP DNS packets, this can lead to longer "block", since many applications block when resolving, and it may happen that the second, non-firewalled packet gets lost on wire... Well, you know :) oki, Steffen -- Dieses Schreiben wurde maschinell erstellt, es trägt daher weder Unterschrift noch Siegel.