'Linux-Announce Digest #979'

[prev in list] [next in list] [prev in thread] [next in thread] 

List:       linux-announce
Subject:    Linux-Announce Digest #979
From:       Digestifier <Linux-Announce-Request () senator-bedfellow ! mit ! edu>
Date:       2004-12-13 10:13:03
Message-ID: 20041213151303.25119.qmail () senator-bedfellow ! mit ! edu
[Download RAW message or body]

Linux-Announce Digest #979, Volume #4          Mon, 13 Dec 2004 10:13:03 EST

Contents:
  [ADMIN] comp.os.linux.announce report for Mon Dec 13 00:05:01 CST 2004 (cola-admin@stump.algebra.com)
  ANNOUNCE: Rope 20041212 - IpTables match module scripting language (Chris Lowth)

----------------------------------------------------------------------------

From: cola-admin@stump.algebra.com
Subject: [ADMIN] comp.os.linux.announce report for Mon Dec 13 00:05:01 CST 2004
Date: Mon, 13 Dec 2004 00:06:06 CST
Reply-To: cola-admin@stump.algebra.com

Subject: comp.os.linux.announce report for Mon Dec 13 00:05:01 CST 2004
Newsgroups: comp.os.linux.announce
Date: Mon Dec 13 00:05:01 CST 2004

This is an automated report about activity of our newsgroup
comp.os.linux.announce. It covers period between the 
previous report and the current one, ending 
on Mon Dec 13 00:05:01 CST 2004.

Note that we do not report the number of articles cancelled
after they got approved, because the cancellations are done
manually. Typically messages get cancelled by requests of
posters themselves.

Lastly, the statistics below are skewed towards higher numbers because
there are always some test messages from moderators themselves who
approve and reject them to make sure that our robomoderator functions
properly.



Approved:       40      messages 
Rejected:       45      messages

##########################################################################
# Send submissions for comp.os.linux.announce to: cola@stump.algebra.com #
# PLEASE remember a short description of the software and the LOCATION.  #
# This group is archived at http://stump.algebra.com/~cola/              #
##########################################################################


------------------------------

Date: Mon, 13 Dec 2004 02:03:40 CST
From: Chris Lowth <chris@lowth.com>
Subject: ANNOUNCE: Rope 20041212 - IpTables match module scripting language

A new version of "Rope" has been released. Changes since the last 
announcement include...

. basic integration with ConnTrack.
. access to ICMP header fields
. symbolic constances
. rationalisation of IP address handling
. "expect_while" optimisation
. loop counter limits


ROPE is a match module for Linux iptables / Netfilter. It allows packet 
matching  criteria to be written using a simple scripting language which 
is executed in and by the Linux kernel.

It is available under the GPL from http://www.lowth.com/rope. The 
current version should be considered experimental; dont deploy on 
mission-critical systems, but please feel free to download, explore and 
feedback.

An example :- a rule that limits the size of pages downloaded over HTTP 
based on the Content-Length header could prevent long downloads before 
they even start. Here's a simple ROPE script to provide this logic...

  $tcp_source 80 eq assert            # check it's HTTP
  expecti_to( "Content-Length: " )    # find the header
  expect_while({isdigit}) put($n)     # lift the length value
  if( atoi($n) 1000000 gt { yes } )   # match: if too long
  no                                  # dont match: if not

If this script is stored as "contlen.rope", then it is installed into an 
Iptables chain using a command like.

  iptables -A FORWARD -m rope --script contlen -j DROP

For more information (including a more thorough version of the example 
script), please refer to:

   http://www.lowth.com/rope

##########################################################################
# Send submissions for comp.os.linux.announce to: cola@stump.algebra.com #
# PLEASE remember a short description of the software and the LOCATION.  #
# This group is archived at http://stump.algebra.com/~cola/              #
##########################################################################


------------------------------


** FOR YOUR REFERENCE **

The service address, to which questions about the list itself and requests
to be added to or deleted from it should be directed, is:

    Internet: Linux-Announce-Request@NEWS-DIGESTS.MIT.EDU

You can submit announcements to be moderated via:

    Internet: linux-announce@NEWS.ORNL.GOV

Linux may be obtained via one of these FTP sites:
    ftp.funet.fi				pub/Linux
    tsx-11.mit.edu				pub/linux
    sunsite.unc.edu				pub/Linux

End of Linux-Announce Digest
******************************
[prev in list] [next in list] [prev in thread] [next in thread]
Configure | About | News | Add a list | Sponsored by KoreLogic