Dear all, According to a security advice published by DFN-CERT [1] in january we deactivated iptables-based forwarding of h323-connections on our gateway. This service was based h323_conntrack-module for kernel 2.4.20, built from latest patch-o-matic. We consider to use video-conferencing again, because netfilter [3] still didn't publish any information whether iptables are affected by this leak. Does anybody of you know the opposite, i.e. iptables are affected by this vulnerability? [1] -> http://cert.uni-stuttgart.de/archive/win-sec-ssc/2004/01/msg00033.html [2] -> http://www.netfilter.org/security/index.html Thanks in advance and kind regards, Thorsten -- Thorsten Büker * Bärenstr. 19-21 / WG 3106 * 52064 Aachen Tel 0241 - 8865315 * Mobil 0163 - 2572057 * http://bueker.net