On Mon, Dec 17, 2007 at 01:22:39PM -0800, Tom Eastep wrote:
> > Shorewall has detected the following iptables/netfilter capabilities:
> > ...
> > Recent Match: Not available
> > ... (all of the modules are "Not available")
>
> Looks like you are not running as root.
The error message could perhaps be improved.
Unfortunately a flat error for uid != 0 would be wrong, since modern
Linux systems can be more complicated than just root/not-root, but it
would be sensible to generate a warning if this fails completely and
the user is not root.
I suggest that a suitable trap would be on this part of
determine_capabilities():
qt $IPTABLES -N fooX1234
If that fails, then the rest of the exercise is pointless anyway, and
either netfilter is missing completely, iptables or the kernel is
broken, or the user doesn't have access.
-------------------------------------------------------------------------
SF.Net email is sponsored by:
Check out the new SourceForge.net Marketplace.
It's the best place to buy or sell services
for just about anything Open Source.
http://ad.doubleclick.net/clk;164216239;13503038;w?http://sf.net/marketplace
_______________________________________________
Shorewall-users mailing list
[email protected]
https://lists.sourceforge.net/lists/listinfo/shorewall-users
