FYI, similar bugs were reported for the Gentoo package for firehol. Gentoo patches firehol with a different workaround to prevent these problems, see http://bugs.gentoo.org/show_bug.cgi?id=153858 for more details.
If you would like to refer to this comment somewhere else in this project, copy and paste the following link:
Patch
Logged In: YES
user_id=358496
Originator: NO
From the patch, I think this may actually be a bash bug...
What do you mean by "not working"?
Logged In: YES
user_id=1523363
Originator: NO
FYI, similar bugs were reported for the Gentoo package for firehol. Gentoo patches firehol with a different workaround to prevent these problems, see http://bugs.gentoo.org/show_bug.cgi?id=153858 for more details.
Logged In: YES
user_id=582393
Originator: NO
Hi,
I am afraid the Gentoo folks did not solve the problem.
Check this:
# printf " %q\n" a b c "d e f g"
a
b
c
d\ e\ f\ g
Note the backslashes at the last line.
While:
# printf " %b\n" a b c "d e f g"
a
b
c
d e f g
Note that the backslashes are missing.
If the backslashes are not there, firehol will fail in certain cases.
To my understanding, the bash bug is not solved yet.
Costa
Logged In: YES
user_id=582393
Originator: NO
Hi,
I am afraid the Gentoo folks did not solve the problem.
Check this:
# printf " %q\n" a b c "d e f g"
a
b
c
d\ e\ f\ g
Note the backslashes at the last line.
While:
# printf " %b\n" a b c "d e f g"
a
b
c
d e f g
Note that the backslashes are missing.
If the backslashes are not there, firehol will fail in certain cases.
To my understanding, the bash bug is not solved yet.
Costa
Logged In: YES
user_id=396722
Originator: NO
This bug is important: Ubuntu now ships with bash 3.2.
A valid (ie working under bash 3.1) conf file gives a lot of errors (here the first one):
--------------------------------------------------------------------------------
ERROR : # 1.
WHAT : A runtime command failed to execute (returned error 2).
SOURCE : line 33 of /etc/firehol/firehol.conf
COMMAND : /sbin/iptables -t filter -A in_internet -p tcp -m state '' --state NEW \! --syn -j pr_internet_nosyn
OUTPUT :
Logged In: YES
user_id=582393
Originator: NO
Hi,
This issue has been fixed in v1.253, currently in the CVS.
Costa