[Bug 581744] Affects lucid

Thu, 20 Jan 2011 05:41:39 -0800 

 affects lucid
 thanks

>From #ubuntu-server:
13:54 <twb> So guess what I just discovered
13:54 <twb> Purging ufw from lucid causes it to disable the firewall -- EVEN IF 
ufw wasn't involved in firewalling
13:55 <twb> This is especially great when I happen to be removing ufw from a 
chroot, on a production server running AT A PRISON
13:56 <jmarsden> Grin!  This is why we should do our learning and trying out 
new things on a test machine in a safe and controlled environment... I don't 
think a live production server in a prison counts as a "safe and controlled 
environment" :)
13:57 <fluvvell> jmarsden, thanks - reading it now - urr once samba.org wakes 
up!
13:57 <twb> jmarsden: well, yes, we did test things
13:57 <jmarsden> fluvvell: You're welcome
13:57 <twb> jmarsden: but you tend not to notice when the firewall falls into 
"allow all" mode on the test box, or you just assume it was one of the other 
idiot devs that did it
14:06 <fluvvell> urk, ufw is installed by default! I never noticed that when I 
installed shorewall
14:12 <twb> fluvvell: it's installed but not enabled
14:12 <twb> fluvvell: BUT, purging it doesn't check whether it's enabled first
14:13 <twb> IMO its postrm should say "am I enabled?  If not, leave the 
firewall the hell alone"
00:21 <jdstrand> twb: re ufw purge-- this is bug #581744, fixed in maverick. 
would you mind adding a comment to that bug, saying it affects you on lucid, 
and I can do an SRU

This is with a 8.04 server as the host OS and a 10.04 chroot
(generated by extracting the filesystem.squashfs from the 10.04.3
desktop live/install CD).

You can *probably* reproduce this by simply debootstraping a lucid
chroot, chroot it apt-get install ufw, chroot it apt-get purge ufw.


** Also affects: lucid
   Importance: Undecided
       Status: New

-- 
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
https://bugs.launchpad.net/bugs/581744

Title:
  Purging should not set reset policies/chains if ufw wasn't enabled

-- 
ubuntu-bugs mailing list
ubuntu-bugs@lists.ubuntu.com
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs

Reply via email to