Bug#332228: kernel-source-2.4.27: ipt_recent bug: stops working after a 250 days uptime
Package: kernel-source-2.4.27
Severity: important
After 250 days, the jiffies overflow and ipt_recent do not work anymore.
If ipt_recent is used with a '-j DROP' then backlisted IPs are blacklisted
forever, ignoring the --seconds option, so that you could be kicked out of
your server.
The only way to fix the problem is to reboot the server :-(
For more info on this problem please see this 2.6.x report (maybe the
patch could be applied to 2.4.27 too ?):
http://patchwork.netfilter.org/netfilter-devel/patch.pl?id=2587
Cheers,
Ludovic.
-- System Information:
Debian Release: 3.1
Architecture: i386 (i686)
Kernel: Linux 2.6.8-2-k7
Locale: LANG=fr_FR, LC_CTYPE=fr_FR (charmap=ISO-8859-1)
Reply to: