Package: procps Version: 1:3.2.6-1 Hello,
i'm not absolutely sure but sure enough to report it as a bug :) Please add net/ipv4/conf/default/rp_filter to the default sysctl.conf. When /etc/init.d/procps is called, there are usually no interfaces configured. As far as I understand /default/ sets the default values for subsequently initialized interfaces. Patch attached. The patch also adds some note regarding the deprecation process handled with #334793. Thanks for your work & regards Mario -- Computer Science is no more about computers than astronomy is about telescopes. -- E. W. Dijkstra
--- /etc/sysctl.conf.orig 2005-11-01 01:07:40.000000000 +0100 +++ sysctl 2005-11-02 10:34:55.000000000 +0100 @@ -5,7 +5,7 @@ # Be warned that /etc/init.d/procps is executed to set the following # variables. However, after that, /etc/init.d/networking sets some # network options with builtin values. These values may be overridden -# using /etc/network/options. +# using /etc/network/options (deprecated but still working). #kernel.domainname = example.com #net/ipv4/icmp_echo_ignore_broadcasts=1 @@ -17,8 +17,9 @@ # Functions previously found in netbase # -# Uncomment the next line to enable Spoof protection (reverse-path filter) +# Uncomment the next two lines to enable Spoof protection (reverse-path filter) #net/ipv4/conf/all/rp_filter=1 +#net/ipv4/conf/default/rp_filter=1 # Uncomment the next line to enable TCP/IP SYN cookies #net/ipv4/tcp_syncookies=1
signature.asc
Description: Digital signature
