https://bugzilla.novell.com/show_bug.cgi?id=843734 https://bugzilla.novell.com/show_bug.cgi?id=843734#c0 Summary: security: Bug Classification: openSUSE Product: openSUSE.org Version: unspecified Platform: x86 OS/Version: openSUSE 12.3 Status: NEW Severity: Minor Priority: P5 - None Component: 3rd party software AssignedTo: lnussel@suse.com ReportedBy: lutchy.horace@outlook.com QAContact: opensuse-communityscreening@forge.provo.novell.com CC: meissner@suse.com Found By: --- Blocker: --- In /etc/sysconfig/sshguard, option PORTS separated by comma. Processed in /etc/init.d/sshguard by iptables_start() function. Iptables doesn't accept multiple ports with just '/usr/sbin/iptables -A INPUT -p tcp --dport $PORTS'. It must be specified in the format of '/usr/sbin/iptables -A INPUT -p tcp -m multiport --dport $PORTS' otherwise it will fail with: iptables v1.4.16.3: invalid port/service `22,443' specified Try `iptables -h' or 'iptables --help' for more information. Best Regards -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=843734 https://bugzilla.novell.com/show_bug.cgi?id=843734#c1 --- Comment #1 from Lutchy Horace <lutchy.horace@outlook.com> 2013-10-02 17:26:01 UTC --- Additionally, wouldn't it be more practical if the init script used 'iptables -I INPUT 1...', that way it still work with custom firewall rules ? -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=843734 https://bugzilla.novell.com/show_bug.cgi?id=843734#c2 Marcus Meissner <meissner@suse.com> changed: What |Removed |Added ---------------------------------------------------------------------------- CC| |lnussel@suse.com AssignedTo|lnussel@suse.com |joop.boonen@boonen.org Summary|security: Bug |security/sshguard: PORTS | |handling incorrect --- Comment #2 from Marcus Meissner <meissner@suse.com> 2013-10-03 07:57:04 UTC --- bugowner of security/sshguard : - maintainer of security/sshguard : joop.boonen@boonen.org -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
http://bugzilla.novell.com/show_bug.cgi?id=843734 http://bugzilla.novell.com/show_bug.cgi?id=843734#c3 Joop Boonen <joop.boonen@boonen.org> changed: What |Removed |Added ---------------------------------------------------------------------------- Status|NEW |RESOLVED Resolution|--- |FIXED --- Comment #3 from Joop Boonen <joop.boonen@boonen.org> --- Has been fixed. Forgot to update ticket. -- You are receiving this mail because: You are on the CC list for the bug.
participants (1)
-
bugzilla_noreply@novell.com