bug#65275: [PATCH] services: %default-nftables-ruleset: Tighten the rule

guix-patches

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

bug#65275: [PATCH] services: %default-nftables-ruleset: Tighten the rule

From:	Ludovic Courtès
Subject:	bug#65275: [PATCH] services: %default-nftables-ruleset: Tighten the rules.
Date:	Thu, 19 Oct 2023 22:00:24 +0200
User-agent:	Gnus/5.13 (Gnus v5.13)

Hi,

Tomas Volf <wolf@wolfsden.cz> skribis:

> Packets for local host IP ranges should be coming only over lo.  If that is
> not the case, we should drop them.  Use iif for the check instead of iifname,
> lo is guaranteed to exists, and iif is faster.
>
> * gnu/services/networking.scm: Tighten the rules.

I tweaked the commit log and finally applied it, thanks!

Ludo’.

[Prev in Thread]

Current Thread

[Next in Thread]

bug#65275: [PATCH] services: %default-nftables-ruleset: Tighten the rules., Ludovic Courtès <=

Prev by Date: [bug#65126] [PATCH] gnu: exiv2: Get rid of reference to GCC.
Next by Date: bug#65477: [PATCH v2 1/2] gnu: Add cl-slite.
Previous by thread: [bug#65126] [PATCH] gnu: exiv2: Get rid of reference to GCC.
Next by thread: bug#65477: [PATCH v2 1/2] gnu: Add cl-slite.
Index(es):
- Date
- Thread