Re: a small bug in iptables.c and ip6tables.c get_modprobe()

To: Mikko Rapeli <mikko.rapeli@iki.fi>
Cc: 219686@bugs.debian.org, debian-firewall@lists.debian.org, netfilter-devel@lists.netfilter.org
Subject: Re: a small bug in iptables.c and ip6tables.c get_modprobe()
From: Martin Schulze <joey@infodrom.org>
Date: Tue, 26 Oct 2004 16:09:31 +0200
Message-id: <[🔎] 20041026140931.GA19643@finlandia.infodrom.north.de>
In-reply-to: <[🔎] 20041013235342.GD4827@nalle>
References: <[🔎] 20041013235342.GD4827@nalle>

Mikko Rapeli wrote:
> Hello,
> 
> This #219686 Lokkit bug in Debian is not actually a Lokkit bug but an iptables
> bug, heh. Firewall or other scripts should not have to load iptables 
> modules since iptables the executable can do it for them. strace and gdb
> showed - after some head scratching - why an 'iptables -L' or 
> 'iptables -N foo' loaded the modules but 'iptables -N RH-Lokkit-0-50-INPUT' 
> did not.
> 
> Attached patches fixes this in iptables 1.2.9, which is now in Debian
> testing, and they also apply to the latest 1.2.11 from netfilter.org.

Thanks a lot Mikko!  This problem has been assigned CAN-2004-0986.

-- 
Testing? What's that? If it compiles, it is good, if it boots up, it is perfect.

Please always Cc to me when replying to me on the lists.

Reply to:

References:
- a small bug in iptables.c and ip6tables.c get_modprobe()
  - From: Mikko Rapeli <mikko.rapeli@iki.fi>

Prev by Date: Re: tcp wrapper
Next by Date: Help with pptp
Previous by thread: a small bug in iptables.c and ip6tables.c get_modprobe()
Next by thread: Reduction of cellulite and fat
Index(es):
- Date
- Thread