Bug#332228: kernel-source-2.4.27: ipt_recent bug: stops working after a 250 days uptime

To: Debian Bug Tracking System <submit@bugs.debian.org>
Subject: Bug#332228: kernel-source-2.4.27: ipt_recent bug: stops working after a 250 days uptime
From: Ludovic Drolez <ldrolez@debian.org>
Date: Wed, 05 Oct 2005 10:25:57 +0200
Message-id: <[🔎] E1EN4b7-00035b-Ee@ovro.freealter.fr>
Reply-to: Ludovic Drolez <ldrolez@debian.org>, 332228@bugs.debian.org

Package: kernel-source-2.4.27
Severity: important


After 250 days, the jiffies overflow and ipt_recent do not work anymore.

If ipt_recent is used with a '-j DROP' then backlisted IPs are blacklisted 
forever, ignoring the --seconds option, so that you could be kicked out of
your server.

The only way to fix the problem is to reboot the server :-(

For more info on this problem please see this 2.6.x report (maybe the
patch could be applied to 2.4.27 too ?):

http://patchwork.netfilter.org/netfilter-devel/patch.pl?id=2587

Cheers,

  Ludovic.


-- System Information:
Debian Release: 3.1
Architecture: i386 (i686)
Kernel: Linux 2.6.8-2-k7
Locale: LANG=fr_FR, LC_CTYPE=fr_FR (charmap=ISO-8859-1)

Reply to:

Follow-Ups:
- Bug#332228: kernel-source-2.4.27: ipt_recent bug: stops working after a 250 days uptime
  - From: Horms <horms@debian.org>

Prev by Date: Processed: Re: Bug#323557: kernel: nfs server intermitently claims ENOENT on existing files or directories
Next by Date: Bug#332231: kernel-source-2.6.8: ipt_recent bug: stops working after a 25 days uptime
Previous by thread: Processed: Re: Bug#323557: kernel: nfs server intermitently claims ENOENT on existing files or directories
Next by thread: Bug#332228: kernel-source-2.4.27: ipt_recent bug: stops working after a 250 days uptime
Index(es):
- Date
- Thread