On 9/2/2014 7:32 AM, PGNd wrote:
>> If not, then is /etc/iproute2/rt_tables writable?
>
> ls -al /etc/iproute2/rt_tables
> -r--r--r-- 1 root root 87 Aug 10 09:06 /etc/iproute2/rt_tables
>
> That's a problem. Fixing,
>
> chmod 0644 /etc/iproute2/rt_tables
>
> (1) no idea why the rt_tables perm's changed; exploring recent @distro
> updates.
> (2) afaict, there's no logged complaint about the incorrect/unwritable perm
> on exec of
>
> sh shorewall reload -s ${TARGET}
>
> Is it logged somewhere, and I"ve missed? if not, should there, perhaps, be a
> perms check coded?It is not logged currently -- patch attached. -Tom -- Tom Eastep \ When I die, I want to go like my Grandfather who Shoreline, \ died peacefully in his sleep. Not screaming like Washington, USA \ all of the passengers in his car http://shorewall.net \________________________________________________
diff --git a/Shorewall/Perl/Shorewall/Providers.pm
b/Shorewall/Perl/Shorewall/Providers.pm
index 7bfa883..5804849 100644
--- a/Shorewall/Perl/Shorewall/Providers.pm
+++ b/Shorewall/Perl/Shorewall/Providers.pm
@@ -1293,9 +1293,11 @@ sub start_providers() {
emit_unindented "$providers{$_}{number}\t$_" unless
$providers{$_}{pseudo};
}
- emit_unindented "EOF\n";
+ emit_unindented 'EOF';
- emit "fi\n";
+ emit( 'else',
+ ' error_message "WARNING: /etc/iproute2/rt_tables is missing
or is not writeable"',
+ "fi\n" );
}
emit ( '#',
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Slashdot TV. Video for Nerds. Stuff that matters. http://tv.slashdot.org/
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
