[Bug 803618] New: Remote Administration Component In Yast2 Does Not Open Firewall Ports When Selected
https://bugzilla.novell.com/show_bug.cgi?id=803618 https://bugzilla.novell.com/show_bug.cgi?id=803618#c0 Summary: Remote Administration Component In Yast2 Does Not Open Firewall Ports When Selected Classification: openSUSE Product: openSUSE 12.3 Version: RC 1 Platform: PC OS/Version: SUSE Other Status: NEW Severity: Major Priority: P5 - None Component: YaST2 AssignedTo: bnc-team-screening@forge.provo.novell.com ReportedBy: malv_star@hotmail.com QAContact: jsrain@suse.com Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; Linux i686; rv:16.0) Gecko/20100101 Firefox/16.0 Using the Yast2 module "Remote Administration" allows users to permit access to the system via VNC, and also to open the relevant firewall ports. Ticking this option however, does not add the service "VNC Server" to the list of permitted services in the Yast2 module "Firewall". Instead, it must be added manually through the "Firewall" module. Reproducible: Always Steps to Reproduce: 1. Start YasT2's "Remote Administration" module. 2. Enable remote administration and tick the checkbox to open the relevant firewall ports. 3. Attempt to access machine remotely via VNC Actual Results: Connection times out as ports were never opened by firewall. Expected Results: VNC server connects and users can log in. After adding the permitted services manually, the VNC server asks the user for a password which does not appear to be the system's root password, nor the password for the current user. This appears to be new behaviour for 12.3, and it would be helpful to know if this is by design. Additionally, other bugs pertaining to network/firewall behaviour are recorded here: https://bugzilla.novell.com/show_bug.cgi?id=801374 https://bugzilla.novell.com/show_bug.cgi?id=803616 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=803618 https://bugzilla.novell.com/show_bug.cgi?id=803618#c Michal Hrusecky <mhrusecky@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|bnc-team-screening@forge.pr |yast2-maintainers@suse.de |ovo.novell.com | -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=803618 https://bugzilla.novell.com/show_bug.cgi?id=803618#c Thomas Göttlicher <tgoettlicher@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|yast2-maintainers@suse.de |lzwang@suse.com -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=803618 https://bugzilla.novell.com/show_bug.cgi?id=803618#c1 --- Comment #1 from Fuminobu Takeyama <ftake@geeko.jp> 2013-03-09 04:54:24 UTC --- Created an attachment (id=529018) --> (http://bugzilla.novell.com/attachment.cgi?id=529018) part of my y2log Does anyone works to fix this bug? I attached my y2log. It seems that the service name of remote administration is wrong: 2013-03-07 12:11:15 <1> linux-4sx0.site(7428) [YCP] SuSEFirewall.ycp:2169 Removing 'service:xorg-x11-server' from 'EXT' zone 2013-03-07 12:11:15 <1> linux-4sx0.site(7428) [YCP] SuSEFirewallServices.ycp:554 Service service:xorg-x11-server is not known, searching for new definitions... And 2013-03-07 12:11:16 <3> linux-4sx0.site(7428) [bash] ShellCommand.cc(shellcommand):78 sh: /sbin/SuSEconfig: No such file or directory is OK? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=803618 https://bugzilla.novell.com/show_bug.cgi?id=803618#c2 Niclas Arndt <niclas_arndt@hotmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |niclas_arndt@hotmail.com --- Comment #2 from Niclas Arndt <niclas_arndt@hotmail.com> 2013-03-20 20:01:30 UTC --- I have a workaround/solution to this problem: /ect/xinet.d/vnc service vnc1 { socket_type = stream protocol = tcp wait = no user = root server = /usr/bin/Xvnc server_args = -noreset -inetd -once -query localhost -geometry 1240x695 -depth 24 -rfbauth /root/.vnc/passwd type = UNLISTED port = 5901 } Log in (locally) as root and type 'vncpasswd' to enter the VNC password. This will enable you to log in as root. (12.2 changed the KDE colour depth, so you had to change '-depth 16' to '24' in the above file to make the icons look ok.) The openSUSE 12.3 documentation should be updated to cover the password change from 12.2 to 12.3. I don't know if it is possible to disable the VNC login screen completely or if you should do additional things to do it properly. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=803618 https://bugzilla.novell.com/show_bug.cgi?id=803618#c3 --- Comment #3 from Malvern Star <malv_star@hotmail.com> 2013-04-13 20:09:33 UTC --- Created an attachment (id=535087) --> (http://bugzilla.novell.com/attachment.cgi?id=535087) y2log containing attempt to change port settings -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=803618 https://bugzilla.novell.com/show_bug.cgi?id=803618#c4 Malvern Star <malv_star@hotmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Version|RC 1 |Final OS/Version|SUSE Other |openSUSE 12.3 --- Comment #4 from Malvern Star <malv_star@hotmail.com> 2013-04-13 20:12:44 UTC --- Bug is present in 12.3 final. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=803618 https://bugzilla.novell.com/show_bug.cgi?id=803618#c5 --- Comment #5 from Malvern Star <malv_star@hotmail.com> 2013-04-13 20:14:56 UTC --- Created an attachment (id=535088) --> (http://bugzilla.novell.com/attachment.cgi?id=535088) After changing interface zone Even after changing the network interface zone to "External" as per this bug: https://bugzilla.novell.com/show_bug.cgi?id=803616 the port selection still doesn't function. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=803618 https://bugzilla.novell.com/show_bug.cgi?id=803618#c6 Malvern Star <malv_star@hotmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Component|YaST2 |YaST2 Version|Final |13.1 Milestone 2 AssignedTo|lzwang@suse.com |bnc-team-screening@forge.pr | |ovo.novell.com Product|openSUSE 12.3 |openSUSE Factory OS/Version|openSUSE 12.3 |SUSE Other --- Comment #6 from Malvern Star <malv_star@hotmail.com> 2013-06-16 08:43:21 UTC --- Problem is still present in openSUSE 13.1 M2. New YaST logs to follow. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=803618 https://bugzilla.novell.com/show_bug.cgi?id=803618#c7 Malvern Star <malv_star@hotmail.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Attachment #535087|0 |1 is obsolete| | --- Comment #7 from Malvern Star <malv_star@hotmail.com> 2013-06-16 10:17:36 UTC --- Created an attachment (id=544274) --> (http://bugzilla.novell.com/attachment.cgi?id=544274) Updated y2log containing attempt to change port settings Updated log for 13.1 M2. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=803618 https://bugzilla.novell.com/show_bug.cgi?id=803618#c Ye Yuan <yyuan@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |yyuan@suse.com AssignedTo|bnc-team-screening@forge.pr |yast2-maintainers@suse.de |ovo.novell.com | -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=803618 https://bugzilla.novell.com/show_bug.cgi?id=803618#c Steffen Winterfeldt <snwint@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- AssignedTo|yast2-maintainers@suse.de |mfilka@suse.com -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=803618 https://bugzilla.novell.com/show_bug.cgi?id=803618#c8 Michal Filka <mfilka@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution| |DUPLICATE --- Comment #8 from Michal Filka <mfilka@suse.com> 2013-06-21 04:02:53 UTC --- Work in progress. Thanks for testing. *** This bug has been marked as a duplicate of bug 808490 *** http://bugzilla.novell.com/show_bug.cgi?id=808490 -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com