Bug 144421 - [security-hole] SUSE Yast Firewall doesn't block IPv6 attacks
Summary: [security-hole] SUSE Yast Firewall doesn't block IPv6 attacks
Status: RESOLVED WORKSFORME
Alias: None
Product: SUSE LINUX 10.0
Classification: openSUSE
Component: YaST2 (show other bugs)
Version: Final
Hardware: All SuSE Linux 10.0
: P5 - None : Critical
Target Milestone: ---
Assignee: Ludwig Nussel
QA Contact: Klaus Kämpf
URL:
Whiteboard:
Keywords:
Depends on:
Blocks:
 
Reported: 2006-01-20 16:15 UTC by Alexey Eremenko
Modified: 2006-01-23 08:16 UTC (History)
2 users (show)

See Also:
Found By: Customer
Services Priority:
Business Priority:
Blocker: ---
Marketing QA Status: ---
IT Deployment: ---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Alexey Eremenko 2006-01-20 16:15:00 UTC 
By default, SUSE Linux 10.0 enables both IP and IPv6 addresses, however the SUSE Firewall in Yast protects only vs. IP attacks, and leaves no protection against IPv6 attacks !

This is a *very* serious security hole, because if there's another hole in, in some application, enemy hacker can take the system's control !
Think of Microsoft Blaster Virus for Windows XP - something like this is possible for SUSE Linux 10.0 now !

Please make sure, that SUSE Linux 10.1 Firewall _closes_ all protocols.
Comment 1 Ludwig Nussel 2006-01-23 08:16:54 UTC 
# ip6tables -vnL INPUT|grep DROP
Chain INPUT (policy DROP 0 packets, 0 bytes)
    0     0 DROP       all      *      *       ::/0                 ::/0
# cat /etc/SuSE-release
SUSE LINUX 10.0.42 (i586) OSS Beta1
VERSION = 10.0.42