On Thu, Mar 27, 2008 at 06:37:30PM +0100, Darshaka Pathirana wrote: > Hi Roberto! > > On 14.03.2008 12:11, Roberto C. Sánchez wrote: > > The best thing would be if you could send a compressed shorewall dump > > from each of the following times: > > > > - just after reboot > > - after shorewall clear > > - after shorewall restart > > > > If you are not comfortable sending it to the bug, then send to my email > > directly. > > I am sorry, but the system was already in production at the time I > wrote the Bug-Message. So I am not able to do any reboots anymore. > Moreover, I feel a little unconfortable submitting a customers log > (altough I possibly could mask the IP-Adresses etc.) > > If you think it would really, really be helpfull to have these logs > let me know, I'll try to send you the logs I have (just after reboot > and after shorewall restart; I didn't dump the log after clearing). > Yes, those logs are crucial. If you mask the IP addresses, be careful not to trash any of the oter data in the dump. However, it would not really give you or your customer any additional security. IP addresses are not seret.
If you prefer, you can encrypt the email to me with my GPG public key from the Debian keyring. Alternatively, you can send the dumps to [EMAIL PROTECTED], which goes to me and to Tom Eastep (the author of Shorewall). I understand about the system being in production, so whenever your next scheduled reboot happens, I would appreciate it if you could try and get the dumps. Regards, -Roberto -- Roberto C. Sánchez http://people.connexer.com/~roberto http://www.connexer.com
signature.asc
Description: Digital signature
