[blfs-book] r12273 - in trunk/BOOK: . introduction/welcome postlfs/security

fernando at higgs.linuxfromscratch.org fernando at higgs.linuxfromscratch.org
Sat Nov 23 05:27:02 PST 2013


Author: fernando
Date: Sat Nov 23 05:27:02 2013
New Revision: 12273

Log:
Update to iptables-1.4.21.

Modified:
   trunk/BOOK/general.ent
   trunk/BOOK/introduction/welcome/changelog.xml
   trunk/BOOK/postlfs/security/iptables.xml

Modified: trunk/BOOK/general.ent
==============================================================================
--- trunk/BOOK/general.ent	Fri Nov 22 08:07:44 2013	(r12272)
+++ trunk/BOOK/general.ent	Sat Nov 23 05:27:02 2013	(r12273)
@@ -1,12 +1,12 @@
 <!-- $LastChangedBy$ $Date$ -->
 
-<!ENTITY day          "22">                   <!-- Always 2 digits -->
+<!ENTITY day          "23">                   <!-- Always 2 digits -->
 <!ENTITY month        "11">                   <!-- Always 2 digits -->
 <!ENTITY year         "2013">
 <!ENTITY copyrightdate "2001-&year;">
 <!ENTITY copyholder   "The BLFS Development Team">
 <!ENTITY version      "&year;-&month;-&day;">
-<!ENTITY releasedate  "November 22nd, &year;">
+<!ENTITY releasedate  "November 23nd, &year;">
 <!ENTITY pubdate      "&year;-&month;-&day;"> <!-- metadata req. by TLDP -->
 <!ENTITY blfs-version "svn">                  <!-- svn|[release #] -->
 <!ENTITY lfs-version  "development">          <!-- version|testing|unstable|development] -->
@@ -147,7 +147,7 @@
 <!ENTITY gnupg2-version               "2.0.22">
 <!ENTITY gnutls-version               "3.2.6">
 <!ENTITY gpgme-version                "1.4.3">
-<!ENTITY iptables-version             "1.4.20">
+<!ENTITY iptables-version             "1.4.21">
 <!ENTITY libcap-version               "2.22">
 <!ENTITY linux-pam-version            "1.1.8">
 <!ENTITY mitkrb-version               "1.11.4">

Modified: trunk/BOOK/introduction/welcome/changelog.xml
==============================================================================
--- trunk/BOOK/introduction/welcome/changelog.xml	Fri Nov 22 08:07:44 2013	(r12272)
+++ trunk/BOOK/introduction/welcome/changelog.xml	Sat Nov 23 05:27:02 2013	(r12273)
@@ -44,6 +44,16 @@
 
 -->
     <listitem>
+      <para>November 23nd, 2013</para>
+      <itemizedlist>
+        <listitem>
+          <para>[fernando] - Update to iptables-1.4.21. Fixes
+          <ulink url="&blfs-ticket-root;4360">#4360</ulink>.</para>
+        </listitem>
+      </itemizedlist>
+    </listitem>
+
+    <listitem>
       <para>November 22nd, 2013</para>
       <itemizedlist>
         <listitem>

Modified: trunk/BOOK/postlfs/security/iptables.xml
==============================================================================
--- trunk/BOOK/postlfs/security/iptables.xml	Fri Nov 22 08:07:44 2013	(r12272)
+++ trunk/BOOK/postlfs/security/iptables.xml	Sat Nov 23 05:27:02 2013	(r12273)
@@ -6,9 +6,9 @@
 
   <!ENTITY iptables-download-http "http://www.netfilter.org/projects/iptables/files/iptables-&iptables-version;.tar.bz2">
   <!ENTITY iptables-download-ftp  "ftp://ftp.netfilter.org/pub/iptables/iptables-&iptables-version;.tar.bz2">
-  <!ENTITY iptables-md5sum        "387b92d3efcf4f07fe31c3bf0f1d18f5">
-  <!ENTITY iptables-size          "540 KB">
-  <!ENTITY iptables-buildsize     "23 MB">
+  <!ENTITY iptables-md5sum        "536d048c8e8eeebcd9757d0863ebb0c0">
+  <!ENTITY iptables-size          "536 KB">
+  <!ENTITY iptables-buildsize     "15 MB">
   <!ENTITY iptables-time          "0.2 SBU">
 ]>
 
@@ -182,6 +182,11 @@
     </para>
 
     <para>
+      <option>--enable-nfsynproxy</option>: This switch enables installation
+      of <application>nfsynproxy</application> SYNPROXY configuration tool.
+    </para>
+
+    <para>
       <command>ln -sfv ../../sbin/xtables-multi /usr/bin/iptables-xml</command>:
       Ensure  the symbolic link for <command>iptables-xml</command> is relative.
     </para>
@@ -310,6 +315,20 @@
           </indexterm>
         </listitem>
       </varlistentry>
+
+      <varlistentry id="nfsynproxy">
+        <term><command>nfsynproxy</command></term>
+        <listitem>
+          <para>
+            (optional) configuration tool. SYNPROXY target makes handling of
+            large SYN floods possible without the large performance penalties
+            imposed by the connection tracking in such cases.
+          </para>
+          <indexterm zone="iptables nfsynproxy">
+            <primary sortas="b-nfsynproxy">nfsynproxy</primary>
+          </indexterm>
+        </listitem>
+      </varlistentry>
 
     </variablelist>
 



More information about the blfs-book mailing list