Your message dated Thu, 09 Aug 2007 19:02:02 +0000 with message-id <[EMAIL PROTECTED]> and subject line Bug#436713: fixed in bastille 1:2.1.1-15 has caused the attached Bug report to be marked as done.
This means that you claim that the problem has been dealt with. If this is not the case it is now your responsibility to reopen the Bug report if necessary, and/or fix the problem forthwith. (NB: If you are a system administrator and have no idea what I am talking about this indicates a serious mail system misconfiguration somewhere. Please contact me immediately.) Debian bug tracking system administrator (administrator, Debian Bugs database)
--- Begin Message ---Package: bastille Version: 1:2.1.1-13 After a recent upgrade of bastille i see these warnings. That problem is older (at least 2005) and i wonder what i did wrong so only i ran into the problem(s)? (At least the second) First: /sbin/bastille-firewall-reset complaints about missing modules.dep Cause: The box is "hardened" and has a monolitic kerenl with no loadable modules support.Allmodules are complied in the kenel so there is no modules.dep as there are no modules. Second: /sbin/bastille-firewall-reset gives (wrong) warning bastille would not be run in rc level 2. Cause: The cron job tries to access /etc/rc.d/init.d but this is a debian there is no rc2.d in init.d, it's at /etc/rc2.d/ That leads to the wrong warning bastille would not be run in rc level 2[A It would be nice if that coul be fixed or explained why this ars features, not bugs ;-) Thanks a lot! Details: First: ==== debian24:~# /etc/init.d/bastille-firewall restart modprobe: Can't open dependencies file /lib/modules/2.4.18/modules.dep (No such file or directory) modprobe: Can't open dependencies file /lib/modules/2.4.18/modules.dep (No such file or directory) modprobe: Can't open dependencies file /lib/modules/2.4.18/modules.dep (No such file or directory) modprobe: Can't open dependencies file /lib/modules/2.4.18/modules.dep (No such file or directory) Setting up IP spoofing protection... done. Allowing traffic from trusted interfaces... done. Setting up chains for public/internal interface traffic... done. Setting up general rules... done. Setting up outbound rules... done. debian24:/etc/init.d# ll /lib/modules/ total 4 drwxr-xr-x 3 root root 4096 Apr 9 2003 2.4.18-bf2.4 debian24:/etc/init.d# lsmod Module Size Used by Not tainted lsmod: QM_MODULES: Function not implemented debian24:/etc/init.d# uname -a Linux debian24 2.4.18 #1 SMP Wed Apr 14 22:01:33 CEST 2004 i686 GNU/Linux There are no modules in this box! ;-) Second: ======= email from root: Cron <[EMAIL PROTECTED]> /sbin/bastille-firewall-reset 2>&1| \ /bin/grep -v " open dependencies file /lib/modules/2.4.18/modules.dep " | \ /bin/grep -v "\.\.\. done.$" | \ /bin/grep -v "\.\.\. done\. $" ls: /etc/rc.d/init.d/../rc2.d: No such file or directory Note: bastille-firewall does not seem to be enabled in runlevel 2 Firewall script will not be run! debian24:~# cd /etc/rc.d/init.d/../rc2.d -bash: cd: /etc/rc.d/init.d/../rc2.d: No such file or directory debian24:~# cd /etc/rc.d/init.d/ debian24:/etc/rc.d/init.d# ll total 4 -rwxr-xr-x 1 root root 1474 Aug 28 2003 smartd debian24:/etc/init.d# ll /etc/rc2.d/ ... lrwxrwxrwx 1 root root 29 Apr 14 2003 K50bastille-firewall -> /etc/init.d/bastille-firewall lrwxrwxrwx 1 root root 27 Apr 15 2003 S19bastille -> /../init.d/bastille-firewall ... # Note this script is automatically linked in to # /etc/dhcpc/dhcpcd-<interface>.exe by the firewall script; ... INITBASEDIR=/etc/rc.d/init.d > # see if the firewall script is normally run as an init script # (even if normally a "K" for this level: if you're in runlevel 1, where # _normally_ you don't run the firewall, but you go ahead and activate # an interface, chances are you'd prefer to have the firewall up) FWALL_CHECK=`ls -l ${INITBASEDIR}/../rc${RUNLEVEL}.d | grep ' [SK]' | grep 'bastille-firewall$' ` if [ -z "${FWALL_CHECK}" ]; then echo "Note: bastille-firewall does not seem to be enabled in runlevel ${RUNLEVEL}" echo " Firewall script will not be run!" exit fi -- Rainer e-Mail: [EMAIL PROTECTED] NO UNSOLICITED/BULK EMAILS OR NEWSLETTERS OR ATTACHMENTS Rainer---<=====> Vertraulich // // <=====>--------------ocholl, Kiel, Germany ------------
--- End Message ---
--- Begin Message ---Source: bastille Source-Version: 1:2.1.1-15 We believe that the bug you reported is fixed in the latest version of bastille, which is due to be installed in the Debian FTP archive: bastille_2.1.1-15.diff.gz to pool/main/b/bastille/bastille_2.1.1-15.diff.gz bastille_2.1.1-15.dsc to pool/main/b/bastille/bastille_2.1.1-15.dsc bastille_2.1.1-15_all.deb to pool/main/b/bastille/bastille_2.1.1-15_all.deb A summary of the changes between this version and the previous one is attached. Thank you for reporting the bug, which will now be closed. If you have further comments please address them to [EMAIL PROTECTED], and the maintainer will reopen the bug report if appropriate. Debian distribution maintenance software pp. Javier Fernandez-Sanguino Pen~a <[EMAIL PROTECTED]> (supplier of updated bastille package) (This message was generated automatically at their request; if you believe that there is a problem with it please contact the archive administrators by mailing [EMAIL PROTECTED]) -----BEGIN PGP SIGNED MESSAGE----- Hash: SHA1 Format: 1.7 Date: Thu, 09 Aug 2007 20:20:42 +0200 Source: bastille Binary: bastille Architecture: source all Version: 1:2.1.1-15 Distribution: unstable Urgency: low Maintainer: Javier Fernandez-Sanguino Pen~a <[EMAIL PROTECTED]> Changed-By: Javier Fernandez-Sanguino Pen~a <[EMAIL PROTECTED]> Description: bastille - Security hardening tool Closes: 357049 362701 436713 436713 Changes: bastille (1:2.1.1-15) unstable; urgency=low . * Fix location of INITBASEDIR in bastille-firewall-reset (Closes: #436713) * Do not try to load/unload modules if the kernel does not support modules (i.e. modules.dep does not exist) (Closes: #362701, #436713) * Packages are now Arch: all (Closes: #357049) * Remove support for bastille-ipchains, 2.2 kernels are no longer supported Files: c55e716686caccf0f78604da2e49c0d3 580 admin optional bastille_2.1.1-15.dsc 18cad8da7f177f15f1bbc8d4040ce127 36746 admin optional bastille_2.1.1-15.diff.gz 770b366f138c0d07073bd003c3b69c88 366930 admin optional bastille_2.1.1-15_all.deb -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.6 (GNU/Linux) iD8DBQFGu2DBsandgtyBSwkRAt35AJ9gtLLtu8ghc81wWp2kf7CWQ8MCWACfbklg k0f6DZTlic/f0Uv7encYYOk= =HRf8 -----END PGP SIGNATURE-----
--- End Message ---
