4.3.6 is now available for testing.
There are no new features in this release; it contains fixes for the
bugs that Steven and I (mostly Steven) have found in 4.3.5.
The ''notrack'' option is now documented in the release notes.
That
feature will be included in 4.2.7 so I had not described it in the 4.3.5
release notes.
Problems corrected in 4.3.6
1) The shorewall6 dump command now correctly displays the installed
Shorewall version.
2) Previously, the ''start'' command set the permission flags
on
/var/lib/shorewall*/state so that it could be read by
non-root users while the ''stop'' command set the
permissions such
that the file could not be read by those users.
Beginning with 4.3.6, both commands will secure the file for
root-only access. If you want the file to be world-readable, then
add
chmod 744 /var/lib/shorewall*/state
To your /etc/shorewall*/started, /etc/shorewall*/stopped and
/etc/shorewall*/restored files.
3) If nets=(<single address>) was specified in
/etc/shorewall/interfaces then the specification was ignored.
4) Shorewall6 compilation failed with this error:
ERROR: Unable to open /usr/share/shorewall6/prog.header6:
No such file or directory
-Tom
--
Tom Eastep \ When I die, I want to go like my Grandfather who
Shoreline, \ died peacefully in his sleep. Not screaming like
Washington, USA \ all of the passengers in his car
http://shorewall.net \________________________________________________
------------------------------------------------------------------------------
Open Source Business Conference (OSBC), March 24-25, 2009, San Francisco, CA
-OSBC tackles the biggest issue in open source: Open Sourcing the Enterprise
-Strategies to boost innovation and cut costs with open source participation
-Receive a $600 discount off the registration fee with the source code: SFAD
http://p.sf.net/sfu/XcvMzF8H