Bug#839671: linux-image-4.7.0-1-amd64: NEWS should document conntrack policy changes
On Mon, 3 Oct 2016, Ben Hutchings wrote:
The kernel has warned about reliance on auto-loading conntrack helpers
since 3.5, so this should not be surprising.
How many people do you think really peruse dmesg for low level warnings?
Esp. considering that the kernel boot messages aren't even printed on
the console any more.
A warning that isn't displayed anywhere is not much of a warning IMO.
In my case it wasn't even printed during the boot / firewall startup,
but some four hours later (when I guess the first time a conntrack rule
failed to operate in the legacy way hit), so even if I checked the logs
during the firewall startup, when the iptables rules that don't work any
more were added, it wouldn't have helped me.
--
-Matt
"Reality is that which, when you stop believing in it, doesn't go away".
-- Philip K. Dick
GPG fingerprint: 0061 15DF D282 D4A9 57CE 77C5 16AF 1460 4A3C C4E9
Reply to: