armbian/linux
0
0
Fork 0
mirror of https://github.com/armbian/linux.git synced 2026-01-06 10:13:00 -08:00
Code Issues Packages Projects Releases Wiki Activity
Files
0bed849274ba1408e45805000a13ccb1c94de4df
linux/net/bridge/netfilter
History
Florian Westphal 635b4f931d netfilter: ebtables: enforce CAP_NET_ADMIN 
commit dce766af54 upstream.

normal users are currently allowed to set/modify ebtables rules.
Restrict it to processes with CAP_NET_ADMIN.

Note that this cannot be reproduced with unmodified ebtables binary
because it uses SOCK_RAW.

Signed-off-by: Florian Westphal <fwestphal@astaro.com>
Signed-off-by: Patrick McHardy <kaber@trash.net>
Signed-off-by: Greg Kroah-Hartman <gregkh@suse.de>
2010-01-18 10:19:40 -08:00
..
ebt_802_3.c
netfilter: xtables: move extension arguments into compound structure (2/6)
2008-10-08 11:35:18 +02:00
ebt_among.c
netfilter: xtables: move extension arguments into compound structure (2/6)
2008-10-08 11:35:18 +02:00
ebt_arp.c
netfilter: xtables: move extension arguments into compound structure (2/6)
2008-10-08 11:35:18 +02:00
ebt_arpreply.c
netfilter: xtables: move extension arguments into compound structure (5/6)
2008-10-08 11:35:19 +02:00
ebt_dnat.c
netfilter: xtables: move extension arguments into compound structure (5/6)
2008-10-08 11:35:19 +02:00
ebt_ip6.c
netfilter: xtables: move extension arguments into compound structure (2/6)
2008-10-08 11:35:18 +02:00
ebt_ip.c
netfilter: xtables: move extension arguments into compound structure (2/6)
2008-10-08 11:35:18 +02:00
ebt_limit.c
netfilter: xtables: move extension arguments into compound structure (2/6)
2008-10-08 11:35:18 +02:00
ebt_log.c
netfilter: ebtables: Use %pM conversion specifier
2009-08-10 10:10:55 +02:00
ebt_mark_m.c
netfilter: xtables: move extension arguments into compound structure (2/6)
2008-10-08 11:35:18 +02:00
ebt_mark.c
netfilter: xtables: move extension arguments into compound structure (5/6)
2008-10-08 11:35:19 +02:00
ebt_nflog.c
netfilter: xtables: move extension arguments into compound structure (5/6)
2008-10-08 11:35:19 +02:00
ebt_pkttype.c
netfilter: xtables: move extension arguments into compound structure (2/6)
2008-10-08 11:35:18 +02:00
ebt_redirect.c
netfilter: xtables: move extension arguments into compound structure (5/6)
2008-10-08 11:35:19 +02:00
ebt_snat.c
netfilter: xtables: move extension arguments into compound structure (5/6)
2008-10-08 11:35:19 +02:00
ebt_stp.c
netfilter: xtables: move extension arguments into compound structure (2/6)
2008-10-08 11:35:18 +02:00
ebt_ulog.c
netfilter: ebt_ulog: fix checkentry return value
2009-09-01 14:34:01 +02:00
ebt_vlan.c
netfilter: xtables: move extension arguments into compound structure (2/6)
2008-10-08 11:35:18 +02:00
ebtable_broute.c
netfilter: xtables: mark initial tables constant
2009-08-24 14:56:30 +02:00
ebtable_filter.c
netfilter: xtables: mark initial tables constant
2009-08-24 14:56:30 +02:00
ebtable_nat.c
netfilter: xtables: switch hook PFs to nfproto
2009-08-10 13:35:21 +02:00
ebtables.c
netfilter: ebtables: enforce CAP_NET_ADMIN
2010-01-18 10:19:40 -08:00
Kconfig
netfilter: fix ebtables dependencies
2008-10-14 11:57:33 -07:00
Makefile
bridge: fix IPV6=n build
2008-06-17 16:16:13 -07:00