Package: arno-iptables-firewall Version: 1.8.8.g-2 Severity: normal Tags: patch
arno-iptables-firewall v.1.8.8g (Debian unstable) fails to read files in /etc/arno-iptables-firewall/plugins/ if there is more then one file with suffix .plugin. I posted the error message below and attached a patch just to show how i solved the problem. ####################################### Using loglevel "info" for syslogd Setting up firewall rules: ------------------------------------------------------------------------------- Accepting packets from the local loopback device Enabling setting the maximum packet size via MSS Enabling mangling TOS Logging of stealth scans (nmap probes etc.) enabled Logging of packets with bad TCP-flags disabled Logging of INVALID TCP packets disabled Logging of INVALID UDP packets disabled Logging of INVALID ICMP packets disabled Logging of fragmented packets disabled Logging of access from reserved addresses disabled Setting up anti-spoof rules Reading custom rules from /etc/arno-iptables-firewall/custom-rules /etc/arno-iptables-firewall/custom-rules: line 7: [: /etc/arno-iptables-firewall/plugins/50ssh-brute-force-protection.plugin: binary operator expected Setting up INPUT policy for the external net (INET): Logging of explicitly blocked hosts enabled ####################################### ####################################### ~ # cat etc_arno-iptables-firewall_custom-rules.diff --- /etc/arno-iptables-firewall/custom-rules~ 2007-02-03 10:28:24.000000000 +0100 +++ /etc/arno-iptables-firewall/custom-rules 2007-02-04 10:31:50.000000000 +0100 @@ -4,7 +4,7 @@ PLUGIN_PATH="/etc/arno-iptables-firewall/plugins" # Load/insert user plugins -if [ -e "$PLUGIN_PATH"/*.plugin ]; then +if [[ $(ls $PLUGIN_PATH | grep ".plugin$") ]]; then echo "Loading (user) plugins:" plugin_count=0 for plugin in "$PLUGIN_PATH"/*.plugin; do ####################################### -- System Information: Debian Release: 4.0 Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.6.18.3-1 Locale: LANG=de_DE.UTF-8, LC_CTYPE=de_DE.UTF-8 (charmap=UTF-8) Versions of packages arno-iptables-firewall depends on: ii debconf [debconf-2.0] 1.5.11 Debian configuration management sy ii gawk 1:3.1.5.dfsg-4 GNU awk, a pattern scanning and pr ii iptables 1.3.6.0debian1-5 administration tools for packet fi ii lynx 2.8.5-2sarge2.2 Text-mode WWW Browser arno-iptables-firewall recommends no packages. -- debconf information: * arno-iptables-firewall/config-int-nat-net: 192.168.1.0/24 * arno-iptables-firewall/config-int-net: 192.168.1.0/24 * arno-iptables-firewall/icmp-echo: false * arno-iptables-firewall/config-ext-if: ppp0 * arno-iptables-firewall/services-tcp: * arno-iptables-firewall/restart: true * arno-iptables-firewall/config-int-if: eth1 arno-iptables-firewall/title: * arno-iptables-firewall/debconf-wanted: true * arno-iptables-firewall/dynamic-ip: false * arno-iptables-firewall/services-udp: * arno-iptables-firewall/nat: true -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
