Re: a small bug in iptables.c and ip6tables.c get_modprobe()
Mikko Rapeli wrote:
> This #219686 Lokkit bug in Debian is not actually a Lokkit bug but an iptables
> bug, heh. Firewall or other scripts should not have to load iptables
> modules since iptables the executable can do it for them. strace and gdb
> showed - after some head scratching - why an 'iptables -L' or
> 'iptables -N foo' loaded the modules but 'iptables -N RH-Lokkit-0-50-INPUT'
> did not.
> Attached patches fixes this in iptables 1.2.9, which is now in Debian
> testing, and they also apply to the latest 1.2.11 from netfilter.org.
Thanks a lot Mikko! This problem has been assigned CAN-2004-0986.
Testing? What's that? If it compiles, it is good, if it boots up, it is perfect.
Please always Cc to me when replying to me on the lists.