Package: gogoc Version: 1:1.2-2 Severity: wishlist Hello!
From what I can see, the gogo client currently when put in a 'router' mode in the linux.sh template tries to generate a radvd.conf, then kill and restart radvd at will. I consider this to be an obnoxious and unnecessary intrusion into proper operation of another unrelated package - I might have had my own radvd setup, of which the tunnel provided by gogoc is only a small part. It also silently enables forwarding, not warning the user that they might also want to set up ip6tables. So the internal network becomes completely exposed without proper firewalling rules on the gateway in place. My conclusion is that the 'linux.sh' script currently does way too much automation, assuming it 'knows better' what the user wants. And among this, it does things which are plain dangerous, not warning about them. I suggest adding a configuration file option to set whether or not linux.sh should control RADVD and configure forwarding, and have that option off by default. -- With respect, Roman
signature.asc
Description: PGP signature
