> > > I just updated iptables. Lucky me, I noticed a warning that it renamed > > /etc/sysconfig/iptables. > > > > It was *my* iptables. rpm must *not* remove files if they were modified > > by user. Just like it should not create .rpmnew if files were *not* > > modified by user. > > There is a check in the scripts to remove it only if it's not yours, and > my tests seemed to show that it worked. > > if cmp -s /etc/sysconfig/iptables /usr/share/doc/iptables- > 1.2.2/iptables.config; then > rm -f /etc/sysconfig/iptables > echo "Removed default iptables config file" > fi > > > Can you double check if the file was really yours ? Can you manually run > the "cmp" and see what's going on here? > >
It created iptables.rpmold (or .rpmsave, I forgot) so I presume it was done by rpm core even before (or after) your script was run. Yes, files are different. I am running filter for quite some time and would not be happy default accept all policy :-) -andrej
