| lists.openwall.net | lists / announce owl-users owl-dev john-users john-dev passwdqc-users yescrypt popa3d-users / oss-security kernel-hardening musl sabotage tlsify passwords / crypt-dev xvendor / Bugtraq Full-Disclosure linux-kernel linux-netdev linux-ext4 linux-hardening linux-cve-announce PHC | |
|
Open Source and information security mailing list archives
| ||
|
Message-ID: <alpine.LSU.2.00.0902131452010.9310@fbirervta.pbzchgretzou.qr>
Date: Fri, 13 Feb 2009 14:54:25 +0100 (CET)
From: Jan Engelhardt <jengelh@...ozas.de>
To: Evgeniy Polyakov <zbr@...emap.net>
cc: Patrick McHardy <kaber@...sh.net>, netdev@...r.kernel.org,
David Miller <davem@...emloft.net>,
"Paul E. McKenney" <paulmck@...ux.vnet.ibm.com>,
Netfilter Development Mailinglist
<netfilter-devel@...r.kernel.org>
Subject: Re: Passive OS fingerprint xtables match (iptables part)
On Friday 2009-02-13 14:12, Evgeniy Polyakov wrote:
>On Fri, Feb 13, 2009 at 02:03:10PM +0100, Jan Engelhardt (jengelh@...ozas.de) wrote:
>> >> > printf("OS fingerprint match options:\n"
>> >> > "--genre [!] string Match a OS genre by passive fingerprinting.\n"
>> >>
>> >> The syntax should be [!] --genre string, that is what most
>> >> others use. Then the check_inverse call also be removed.
>> >
>> >Actually not, it has genre not Linux (Windows, Solaris, HPUX and so on).
>>
>> It may not coincide with English grammar, but it is easier to parse.
>
>'! --genre Linux' means this option was not specified,
>'--genre ! Linux' means everything but Linux.
Well not in iptables. Not specifying an option is represented by
voidness/absence of any string. (E.g. iptables -d 192.168.0.0/16 vs.
iptables ! -s 172.16.0.0/12 -d 192.168.0.0/16)
Also, (!(--genre == "linux")) is eqv. (--genre != "linux")
is equivalent in boolean logic ;-)
--
To unsubscribe from this list: send the line "unsubscribe netdev" in
the body of a message to majordomo@...r.kernel.org
More majordomo info at http://vger.kernel.org/majordomo-info.html
Powered by blists - more mailing lists