https://bugzilla.novell.com/show_bug.cgi?id=220355 Summary: Knockd package Product: SUSE Linux 10.1 Version: Final Platform: i586 OS/Version: Other Status: NEW Severity: Minor Priority: P5 - None Component: Security AssignedTo: security-team@suse.de ReportedBy: andrea.bar@email.it QAContact: qa@suse.de in a normal installation (repeated on five different pcs!!!!): -I correctly installed knockd daemon. -I correctly put the conf file in /etc/sysconfig/ direcoty from template provided in the package -I correctly changed to satisfy my need knockd.cong in /etc/ -I correctly lauched daemon (ps -e |grep knockd shows the program in memory) Knockd is able to write in the file log start and stop report. Every attemp to knock the right ports in the right order cause no event in iptables rules. nothing neither in the knockd log. Attempts are correctly logged in /var/log/firewall (right prots knocked in the right order) I hope I was clear. best regards Andrea Barberi -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=220355 ------- Comment #1 from andrea.bar@email.it 2006-11-13 02:55 MST ------- Forotten!!! Package version tested are: knockd-0.5-16.i586 (rpm.pbone.net / opensuse offical repository) knockd-0.5-11.i586 (rpm.pbone.net) -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=220355 meissner@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |security-team@suse.de AssignedTo|security-team@suse.de |mskibbe@novell.com ------- Comment #2 from meissner@novell.com 2006-11-13 02:59 MST ------- -> maintainer -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=220355 mskibbe@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |NEEDINFO Info Provider| |andrea.bar@email.it ------- Comment #3 from mskibbe@novell.com 2006-11-13 03:15 MST ------- please provide me more information to reproduce this. i need your config file, your related logfiles and the output of iptables -L would be nice. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=220355 ------- Comment #4 from andrea.bar@email.it 2006-11-14 06:16 MST ------- I'm sorry... found the problem! Successfully installed knockd on Opensuse 10.1 /etc/knockd.conf (provided with this package http://ftp.opensuse.org/pub/opensuse/distribution/SL-OSS-factory/inst-source... ) (1) /etc/knockd.conf is wrong because: - iptables command is not in /sbin/ but /usr/sbin/ - -A option (append) of iptables appends new rules after all inserted by SusEFirewall so they become incative: use instead -I (insert) (2) - file /etc/sysconfig/knockd is missing, and it can be found in /var/adm/fillups_templates/ as sysconfig_knockd (why?) after this little tuning all work !!! is it possible, to avoid time waste, include correct knockd.conf /etc/sysconfig/knockd file in the next package? I hope so excuseme again for opening this bug.. Andrea Barberi -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=220355 ------- Comment #5 from mskibbe@novell.com 2006-11-14 06:32 MST ------- nr1: thats correct i fixed both (the -A => -I option; path to iptables) nr2: if i uninstall knock and knockd; delete /etc/sysconfig/knock*; install knock and knockd there is a file /etc/sysconfig/knock the reason for the file in /var/adm/fillups_templates/ is that a makro copy the sysconfig file from there to /etc/sysconfig/ no the bug is good. there was a bug in the config file. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
https://bugzilla.novell.com/show_bug.cgi?id=220355 mskibbe@novell.com changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEEDINFO |RESOLVED Info Provider|andrea.bar@email.it | Resolution| |FIXED ------- Comment #6 from mskibbe@novell.com 2006-11-14 07:07 MST ------- submit into stable => fixed -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug, or are watching someone who is.
participants (1)
-
bugzilla_noreply@novell.com