Re: Intent to package: mason

To: debian-devel@lists.debian.org
Subject: Re: Intent to package: mason
From: Steve Przepiora <gearhead@twcny.rr.com>
Date: Fri, 26 Mar 1999 12:33:45 -0500
Message-id: <[🔎] 99032612384900.10169@osh1-2e2>
References: <[🔎] 19990326081658.C1703@1dyn39.utr.casema.net>

-----BEGIN PGP SIGNED MESSAGE-----

I currently run a stable version of debian. I have tried mason, and it does
need some tweeks to get it running, however it made some really bad rules. It
stopped traffic I wanted to get through, and should have been allowed through,
since I followed the destructions. However I flushed the rules, and edited the
script it created, it then worked properly. If I'm correct this is still beta
software. It didn't hose my scripts or anything like that, ofcourse I also
edited everything I could before I installed it, so it put things where they
belonged.

Steve Przepiora

PS. I have since devided not to use this piece of software, because while I was
using it I realized I didnt have to firewall everything because I _DON'T_ run
anything except sendmail. I have made it impossible for anyone to connect to
port 25 however(I use fetchmail and only allow myself to connect to port 25).
This is a resonable default on my type of system

On Fri, 26 Mar 1999, Joop Stakenborg wrote:
> On Fri, Mar 26, 1999 at 12:09:39AM -0600, Jeff Licquia wrote:
> > ...once my developer application is approved.
> > 
> > Mason is a firewall configuration tool that works "by example"; it can
> > watch the connections you're making and create rules to allow/block
> > those particular connections.
> > 
> > It's pretty snazzy; it supports both ipfwadm and ipchains, supports some
> > rather complex protocols, will do the TOS flag, will set up masq for
> > you.  It even can be persuaded to output Cisco firewall rules.
> > 
> > Best of all, it's GPL.  For more info:
> > http://users.dhp.com/~whisper/mason/
> > 
> 
> You have picked a really 'dangerous' application. I tried it a few
> day ago. After using it, it took about 2 hours to get my machine running
> again.
> 
> - /dev/null was turned into a directory
> - /etc/init.d scripts were hosed.
> - mason modified several files in /etc without asking
> 
> Beware!
> 
> Joop
> -- 
> 
>  Joop Stakenborg PA4TU, ex-PA3ABA <pa3aba@debian.org>
>  Linux Hamradio Applications and Utilities Homepage
>  http://www.casema.net/~aba
> 
> 
> -- 
> To UNSUBSCRIBE, email to debian-devel-request@lists.debian.org
> with a subject of "unsubscribe". Trouble? Contact listmaster@lists.debian.org
-----BEGIN PGP SIGNATURE-----
Version: 2.6.3a
Charset: noconv

iQCVAwUBNvvGK+mHzGy9kqTJAQEEuAQAnJmspkYrLqKqoZOZq1xWjt4Es0nVwbEo
RhmAgZhH1uR7GZrzK+YO7UCoOlQ8YBSKXPzlsX7vcvK1lySIGQrzHTNSzeMdx0GH
/Dvx2+uVILB2taOfdvQKONLTTD8RyRuQgIAd8RAzUheBSK/aVnzyvYJJVg5VEQu3
tzh3whK2ARw=
=uGCV
-----END PGP SIGNATURE-----

Reply to:

Follow-Ups:
- Re: Intent to package: mason
  - From: Jeff Licquia <jeff@luci.org>

References:
- Re: Intent to package: mason
  - From: Joop Stakenborg <aba@casema.net>

Prev by Date: Re: vic for mbone video
Next by Date: Re: Clueless users are bad for debian (was Let's CENSOR it!)
Previous by thread: Re: Intent to package: mason
Next by thread: Re: Intent to package: mason
Index(es):
- Date
- Thread