[Bug 808759] New: upgrade from 12.2 -> 12.3 -- SuSEFirewall2 *disabled*
https://bugzilla.novell.com/show_bug.cgi?id=808759 https://bugzilla.novell.com/show_bug.cgi?id=808759#c0 Summary: upgrade from 12.2 -> 12.3 -- SuSEFirewall2 *disabled* Classification: openSUSE Product: openSUSE 12.3 Version: Final Platform: Other OS/Version: Other Status: NEW Severity: Normal Priority: P5 - None Component: Security AssignedTo: security-team@suse.de ReportedBy: jnelson-suse@jamponi.net QAContact: qa-bugs@suse.de Found By: --- Blocker: --- User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:19.0) Gecko/20100101 Firefox/19.0 After upgrading from 12.2 to 12.3, I noticed that multiple services went from enabled to disabled, including *SuSEFirewall2* (a security concern). - SuSEFirewall2 - squid - irqbalance and possibly others. Reproducible: Always Steps to Reproduce: 1. 2. 3. -- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=808759
https://bugzilla.novell.com/show_bug.cgi?id=808759#c1
Jon Nelson
https://bugzilla.novell.com/show_bug.cgi?id=808759
https://bugzilla.novell.com/show_bug.cgi?id=808759#c2
Andreas Wolf
rcSuSEfirewall2 status rcSuSEfirewall2: no such service SuSEfirewall2
SuSEfirewall2 start SuSEfirewall2: Setting up rules from /etc/sysconfig/SuSEfirewall2 ... SuSEfirewall2: using default zone 'ext' for interface tun0 SuSEfirewall2: Firewall customary rules loaded from /etc/sysconfig/scripts/SuSEfirewall2-custom SuSEfirewall2: Firewall rules successfully set
rcSuSEfirewall2 status rcSuSEfirewall2: no such service SuSEfirewall2
SuSEfirewall2 status ### iptables filter ### Chain INPUT (policy DROP 0 packets, 0 bytes) [...]
Workaround: chkconfig has no SuSEfirewall2_init or SuSEfirewall2_setup entries any more After enabling it anyway, rcSuSefirewall2 works again:
chkconfig SuSEfirewall2 on ln -s '/usr/lib/systemd/system/SuSEfirewall2.service' '/etc/systemd/system/SuSEfirewall2_setup.service' ln -s '/usr/lib/systemd/system/SuSEfirewall2.service' '/etc/systemd/system/multi-user.target.wants/SuSEfirewall2.service' ln -s '/usr/lib/systemd/system/SuSEfirewall2_init.service' '/etc/systemd/system/multi-user.target.wants/SuSEfirewall2_init.service'
rcSuSEfirewall2 status SuSEfirewall2.service - SuSEfirewall2 phase 2 Loaded: loaded (/usr/lib/systemd/system/SuSEfirewall2.service; enabled) Active: inactive (dead) CGroup: name=systemd:/system/SuSEfirewall2.service
rcSuSEfirewall2 start rcSuSEfirewall2 status SuSEfirewall2.service - SuSEfirewall2 phase 2 Loaded: loaded (/usr/lib/systemd/system/SuSEfirewall2.service; enabled) Active: active (exited) since Sun, 2013-04-07 14:17:31 CEST; 4s ago Process: 23534 ExecStart=/usr/sbin/SuSEfirewall2 boot_setup (code=exited, status=0/SUCCESS) CGroup: name=systemd:/system/SuSEfirewall2.service
Furthermore /usr/share/doc/packages/SuSEfirewall2/README 2.2. Manual configuration seems to be wrong:
chkconfig SuSEfirewall2_init on chkconfig SuSEfirewall2_setup on Failed to issue method call: No such file or directory
-- Configure bugmail: https://bugzilla.novell.com/userprefs.cgi?tab=email ------- You are receiving this mail because: ------- You are on the CC list for the bug.
https://bugzilla.novell.com/show_bug.cgi?id=808759
https://bugzilla.novell.com/show_bug.cgi?id=808759#c3
Christian Boltz
https://bugzilla.novell.com/show_bug.cgi?id=808759
https://bugzilla.novell.com/show_bug.cgi?id=808759#c
Thomas Biege
https://bugzilla.novell.com/show_bug.cgi?id=808759
https://bugzilla.novell.com/show_bug.cgi?id=808759#c4
Swamp Workflow Management
https://bugzilla.novell.com/show_bug.cgi?id=808759
https://bugzilla.novell.com/show_bug.cgi?id=808759#c5
Marcus Meissner
https://bugzilla.novell.com/show_bug.cgi?id=808759
https://bugzilla.novell.com/show_bug.cgi?id=808759#c6
Marcus Meissner
https://bugzilla.novell.com/show_bug.cgi?id=808759
https://bugzilla.novell.com/show_bug.cgi?id=808759#c
Alberto Planas Dominguez
https://bugzilla.novell.com/show_bug.cgi?id=808759
https://bugzilla.novell.com/show_bug.cgi?id=808759#c7
--- Comment #7 from Jon Nelson
https://bugzilla.novell.com/show_bug.cgi?id=808759
https://bugzilla.novell.com/show_bug.cgi?id=808759#c8
--- Comment #8 from Marcus Meissner
https://bugzilla.novell.com/show_bug.cgi?id=808759
https://bugzilla.novell.com/show_bug.cgi?id=808759#c9
Marcus Meissner
participants (1)
-
bugzilla_noreply@novell.com