Package: ipsec-tools Version: 1:0.7.1-1.3+lenny2 Severity: normal Hi,
On removal and purging of ipsec-tools package the IPsec SA/SP database does not get flushed. This leaves the system possibly in a state with active IPsec SPD entries, without the tools to manage the SP database. Currently the only solution in this case is either to reboot or to reinstall the package, run setkey or init-script and remove package again. While I think it's a good idea to *not* run setkey init-script after installation, I do not see a good reason, why setkey init-script does not get invoked on removal. I think an invokation of /etc/init.d/setkey stop in a prerm script would be a good idea. Jan -- System Information: Debian Release: 5.0.4 APT prefers stable APT policy: (500, 'stable') Architecture: i386 (i686) Kernel: Linux 2.6.26-2-686-bigmem (SMP w/4 CPU cores) Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968) Shell: /bin/sh linked to /bin/bash Versions of packages ipsec-tools depends on: ii libc6 2.7-18lenny2 GNU C Library: Shared libraries ii libcomerr2 1.41.3-1 common error description library ii libkrb53 1.6.dfsg.4~beta1-5lenny2 MIT Kerberos runtime libraries ii libpam0g 1.0.1-5+lenny1 Pluggable Authentication Modules l ii libssl0.9.8 0.9.8g-15+lenny6 SSL shared libraries ipsec-tools recommends no packages. ipsec-tools suggests no packages. -- no debconf information -- To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org Archive: http://lists.debian.org/20100215122411.30715.10761.report...@island.zedat.fu-berlin.de