Package: ipsec-tools
Version: 1:0.7.1-1.3+lenny2
Severity: normal
Hi,
On removal and purging of ipsec-tools package the IPsec SA/SP database does not
get
flushed. This leaves the system possibly in a state with active IPsec
SPD entries, without the tools to manage the SP database.
Currently the only solution in this case is either to reboot or to
reinstall the package, run setkey or init-script and remove package
again.
While I think it's a good idea to *not* run setkey init-script after
installation, I
do not see a good reason, why setkey init-script does not get invoked on
removal.
I think an invokation of
/etc/init.d/setkey stop
in a prerm script would be a good idea.
Jan
-- System Information:
Debian Release: 5.0.4
APT prefers stable
APT policy: (500, 'stable')
Architecture: i386 (i686)
Kernel: Linux 2.6.26-2-686-bigmem (SMP w/4 CPU cores)
Locale: LANG=C, LC_CTYPE=C (charmap=ANSI_X3.4-1968)
Shell: /bin/sh linked to /bin/bash
Versions of packages ipsec-tools depends on:
ii libc6 2.7-18lenny2 GNU C Library: Shared libraries
ii libcomerr2 1.41.3-1 common error description library
ii libkrb53 1.6.dfsg.4~beta1-5lenny2 MIT Kerberos runtime libraries
ii libpam0g 1.0.1-5+lenny1 Pluggable Authentication Modules l
ii libssl0.9.8 0.9.8g-15+lenny6 SSL shared libraries
ipsec-tools recommends no packages.
ipsec-tools suggests no packages.
-- no debconf information
--
To UNSUBSCRIBE, email to debian-bugs-dist-requ...@lists.debian.org
with a subject of "unsubscribe". Trouble? Contact listmas...@lists.debian.org
Archive:
http://lists.debian.org/20100215122411.30715.10761.report...@island.zedat.fu-berlin.de
