Maybe I'm wrong but the kernel was not patched to the ip-conntrack-ftp, it was patched iptables (http://netfilter.samba.org) . Best regards Agustin At 14:03 31/07/01 +0200, Stefan_Walther@gehag-dsk.de wrote:

Hi,

thats right. But I use a 2.4.7 from kernel.org on my SuSE system. I think the patch is applied to this version. I take this kernel, because I recognized that some featurs I need are not implemented in the SuSE kernels.

MfG.

Stefan Walther stefan_walther@gehag-dsk.de dienst.: +4930/89786448 Funk: +49172/3943961

One thing to bear in mind with this approach : AFAIK the stock SuSE 7.2 2.4.4 kernel hasn't been patched to close the serious security hole in ip_conntrack_ftp, so if security is of any importance at all, and you have to allow FTP, 2.2.19 is probably better.

just my 2 cents. Maf.

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

Maf. King Standby Exhibition Services

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

"It is easier to do a job right than to explain why you didn't."

- Martin Van Buren

~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~~

-- To unsubscribe, e-mail: suse-security-unsubscribe@suse.com For additional commands, e-mail: suse-security-help@suse.com