[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: firewall

On Mon, Sep 10, 2001 at 12:59:42PM -0700, Garrick James wrote:
> [snip]
> > > It should be sufficient to do
> > >         update-rc.d -f portmap remove
> > >         update-rc.d -f lpd remove
> > >         update-rc.d -f bind remove
> > 
> > As an aside, I did this with proftpd, but when I upgrade the install
> > scripts restart it.  Is there a proper way way to deal with this?  Is
> > there some debian policy relating to it?
> I usually divert the package's binary to something else.  That way the init
> script sees that the executable does not exist and therefore doesn't start
> it.  For portmap use something like:
> dpkg-divert --rename --divert /sbin/portmap.diverted /sbin/portmap
> Even if the init scripts get put back in place by un upgrade, they are
> looking for /sbin/portmap and not /sbin/portmap.diverted.  :-)  Man
> dpkg-divert for more info.

Of course that means I can no longer use /etc/init.d/proftpd start to
start it :)

Adam Olsen, aka Rhamphoryncus

Reply to: