[Touch-packages] [Bug 1704288] Re: Ubuntu 16.04 VPN : DNS information leaking through dnsmasq
I can confirm this bug on an up to date 16.04.02 Ubuntu MATE in a virtual machine. This is a regression as the problem only surfaced within the last 2-3 weeks: it was working correctly before. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to dnsmasq in Ubuntu. https://bugs.launchpad.net/bugs/1704288 Title: Ubuntu 16.04 VPN : DNS information leaking through dnsmasq Status in dnsmasq package in Ubuntu: Incomplete Bug description: Hi, After connecting the VPN # killall -USR1 dnsmasq # tail syslog.log ... Jul 13 02:18:56 tp dnsmasq[1476]: time 1499905136 Jul 13 02:18:56 tp dnsmasq[1476]: cache size 0, 0/0 cache insertions re-used unexpired cache entries. Jul 13 02:18:56 tp dnsmasq[1476]: queries forwarded 154, queries answered locally 1 Jul 13 02:18:56 tp dnsmasq[1476]: queries for authoritative zones 0 Jul 13 02:18:56 tp dnsmasq[1476]: server 198.18.0.1#53: queries sent 0, retried or failed 0 Jul 13 02:18:56 tp dnsmasq[1476]: server 198.18.0.2#53: queries sent 0, retried or failed 0 Jul 13 02:18:56 tp dnsmasq[1476]: server 192.168.0.254#53: queries sent 12, retried or failed 0 The first two name server are provided by the vpn connection. The last 192.168.0.254 name server is running on my local router and forward request to my ISP (this is the default name server when VPN is not activated). When I query the DNS, queries are sent to each name server which makes a DNS information leaking to my ISP I validated that by the mean of tcpdump on eth and tun interfaces and also by using that site: https://www.dnsleaktest.com/ I tried to force the VPN DNS server IPs in the VPN configuration (edit Vpn connection -> ipv4 - > Automatic Adresses only ..) but the result is the same. dnsmasq must not have the local DNS present while VPN connection is established. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/dnsmasq/+bug/1704288/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1624317] Re: systemd-resolved breaks VPN with split-horizon DNS
I can also confirm that the latest patch fixes the problem. Thank you very much for your work! -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to network-manager in Ubuntu. https://bugs.launchpad.net/bugs/1624317 Title: systemd-resolved breaks VPN with split-horizon DNS Status in systemd: New Status in network-manager package in Ubuntu: Confirmed Status in systemd package in Ubuntu: Confirmed Status in network-manager source package in Artful: Confirmed Status in systemd source package in Artful: Confirmed Bug description: I use a VPN configured with network-manager-openconnect-gnome in which a split-horizon DNS setup assigns different addresses to some names inside the remote network than the addresses seen for those names from outside the remote network. However, systemd-resolved often decides to ignore the VPN’s DNS servers and use the local network’s DNS servers to resolve names (whether in the remote domain or not), breaking the split-horizon DNS. This related bug, reported by Lennart Poettering himself, was closed with the current Fedora release at the time reaching EOL: https://bugzilla.redhat.com/show_bug.cgi?id=1151544 To manage notifications about this bug go to: https://bugs.launchpad.net/systemd/+bug/1624317/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1624317] Re: systemd-resolved breaks VPN with split-horizon DNS
I should add that I'm using network-manager-openvpn and network-manager- openvpn-gnome. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to network-manager in Ubuntu. https://bugs.launchpad.net/bugs/1624317 Title: systemd-resolved breaks VPN with split-horizon DNS Status in systemd: New Status in network-manager package in Ubuntu: Confirmed Status in systemd package in Ubuntu: Confirmed Bug description: I use a VPN configured with network-manager-openconnect-gnome in which a split-horizon DNS setup assigns different addresses to some names inside the remote network than the addresses seen for those names from outside the remote network. However, systemd-resolved often decides to ignore the VPN’s DNS servers and use the local network’s DNS servers to resolve names (whether in the remote domain or not), breaking the split-horizon DNS. This related bug, reported by Lennart Poettering himself, was closed with the current Fedora release at the time reaching EOL: https://bugzilla.redhat.com/show_bug.cgi?id=1151544 To manage notifications about this bug go to: https://bugs.launchpad.net/systemd/+bug/1624317/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1624317] Re: systemd-resolved breaks VPN with split-horizon DNS
Nicholas, thank you very much for your work on this patch. It works correctly for me: no DNS leak detected by either https://ipleak.net or https://dnsleaktest.com for me, when both detected leaks in the unpatched version. Running Ubuntu-MATE 17.04. Could we perhaps get this upstreamed into NM? -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to network-manager in Ubuntu. https://bugs.launchpad.net/bugs/1624317 Title: systemd-resolved breaks VPN with split-horizon DNS Status in systemd: New Status in network-manager package in Ubuntu: Confirmed Status in systemd package in Ubuntu: Confirmed Bug description: I use a VPN configured with network-manager-openconnect-gnome in which a split-horizon DNS setup assigns different addresses to some names inside the remote network than the addresses seen for those names from outside the remote network. However, systemd-resolved often decides to ignore the VPN’s DNS servers and use the local network’s DNS servers to resolve names (whether in the remote domain or not), breaking the split-horizon DNS. This related bug, reported by Lennart Poettering himself, was closed with the current Fedora release at the time reaching EOL: https://bugzilla.redhat.com/show_bug.cgi?id=1151544 To manage notifications about this bug go to: https://bugs.launchpad.net/systemd/+bug/1624317/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1648237] Re: update-manager and unattended-upgrades failure
Point (3) of the above can be worked around by running Marco as window manager rather than compiz. Looks like several different issues here. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to unattended-upgrades in Ubuntu. https://bugs.launchpad.net/bugs/1648237 Title: update-manager and unattended-upgrades failure Status in ubuntu-mate: New Status in unattended-upgrades package in Ubuntu: Confirmed Status in update-manager package in Ubuntu: Confirmed Bug description: A series of issues about update-manager and unattended-upgrade. I have set the system to: - automatically check for update daily - when there are security updates, download and install them automatically - when there are other updates, display them immediately. What occurs: (1) unattended-upgrade runs on boot but systematically its log states every day that: "No packages found that can be upgraded unattended and no pending auto-removals" even where there are security updates to install. (2) update-manager appears not to refresh the cache automatically after boot. (3) when the cache is manually refreshed so there are updates, update- manager runs after a subsequent boot and appears in the panel. However clicking on it leads it to simply disappear. (4) update-manager will not launch from the menu. When launched from a terminal it runs correctly, refreshes the cache and will install updates. No crash reports, nothing obvious in log files. Ubuntu-MATE 16.10 clean install, fully updated. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu-mate/+bug/1648237/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1648237] Re: update-manager and unattended-upgrades failure
Additional info: on one occasion I have the following in .xsession-errors debconf: DbDriver "passwords" warning: could not open /var/cache/debconf/passwords.dat: Permission denied Further additional info: manually refreshing the cache then manually running unattended-upgrades works. I deduce from this that the cache is not updating automatically. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to unattended-upgrades in Ubuntu. https://bugs.launchpad.net/bugs/1648237 Title: update-manager and unattended-upgrades failure Status in ubuntu-mate: New Status in unattended-upgrades package in Ubuntu: Confirmed Status in update-manager package in Ubuntu: Confirmed Bug description: A series of issues about update-manager and unattended-upgrade. I have set the system to: - automatically check for update daily - when there are security updates, download and install them automatically - when there are other updates, display them immediately. What occurs: (1) unattended-upgrade runs on boot but systematically its log states every day that: "No packages found that can be upgraded unattended and no pending auto-removals" even where there are security updates to install. (2) update-manager appears not to refresh the cache automatically after boot. (3) when the cache is manually refreshed so there are updates, update- manager runs after a subsequent boot and appears in the panel. However clicking on it leads it to simply disappear. (4) update-manager will not launch from the menu. When launched from a terminal it runs correctly, refreshes the cache and will install updates. No crash reports, nothing obvious in log files. Ubuntu-MATE 16.10 clean install, fully updated. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu-mate/+bug/1648237/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1648237] Re: update-manager and unattended-upgrades failure
And now an error message in the unattended-upgrades log file: 2016-12-08 20:47:28,042 INFO Allowed origins are: ['o=Ubuntu,a=yakkety', 'o=Ubuntu,a=yakkety-security'] 2016-12-08 20:47:46,867 ERROR An error occurred: 'Could not resolve 'security.ubuntu.com'' 2016-12-08 20:47:46,868 ERROR The URI 'http://security.ubuntu.com/ubuntu/pool/main/g/ghostscript/ghostscript-x_9.19~dfsg+1-0ubuntu6.3_amd64.deb' failed to download, aborting Looks like it tries to run before the network is up. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to unattended-upgrades in Ubuntu. https://bugs.launchpad.net/bugs/1648237 Title: update-manager and unattended-upgrades failure Status in ubuntu-mate: New Status in unattended-upgrades package in Ubuntu: New Status in update-manager package in Ubuntu: New Bug description: A series of issues about update-manager and unattended-upgrade. I have set the system to: - automatically check for update daily - when there are security updates, download and install them automatically - when there are other updates, display them immediately. What occurs: (1) unattended-upgrade runs on boot but systematically its log states every day that: "No packages found that can be upgraded unattended and no pending auto-removals" even where there are security updates to install. (2) update-manager appears not to refresh the cache automatically after boot. (3) when the cache is manually refreshed so there are updates, update- manager runs after a subsequent boot and appears in the panel. However clicking on it leads it to simply disappear. (4) update-manager will not launch from the menu. When launched from a terminal it runs correctly, refreshes the cache and will install updates. No crash reports, nothing obvious in log files. Ubuntu-MATE 16.10 clean install, fully updated. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu-mate/+bug/1648237/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1648237] Re: update-manager and unattended-upgrades failure
Also: https://ubuntuforums.org/showthread.php?t=2330407 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to unattended-upgrades in Ubuntu. https://bugs.launchpad.net/bugs/1648237 Title: update-manager and unattended-upgrades failure Status in ubuntu-mate: New Status in unattended-upgrades package in Ubuntu: New Status in update-manager package in Ubuntu: New Bug description: A series of issues about update-manager and unattended-upgrade. I have set the system to: - automatically check for update daily - when there are security updates, download and install them automatically - when there are other updates, display them immediately. What occurs: (1) unattended-upgrade runs on boot but systematically its log states every day that: "No packages found that can be upgraded unattended and no pending auto-removals" even where there are security updates to install. (2) update-manager appears not to refresh the cache automatically after boot. (3) when the cache is manually refreshed so there are updates, update- manager runs after a subsequent boot and appears in the panel. However clicking on it leads it to simply disappear. (4) update-manager will not launch from the menu. When launched from a terminal it runs correctly, refreshes the cache and will install updates. No crash reports, nothing obvious in log files. Ubuntu-MATE 16.10 clean install, fully updated. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu-mate/+bug/1648237/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1648237] Re: update-manager and unattended-upgrades failure
Other similar reports: https://ubuntuforums.org/showthread.php?t=2339387 -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to unattended-upgrades in Ubuntu. https://bugs.launchpad.net/bugs/1648237 Title: update-manager and unattended-upgrades failure Status in ubuntu-mate: New Status in unattended-upgrades package in Ubuntu: New Status in update-manager package in Ubuntu: New Bug description: A series of issues about update-manager and unattended-upgrade. I have set the system to: - automatically check for update daily - when there are security updates, download and install them automatically - when there are other updates, display them immediately. What occurs: (1) unattended-upgrade runs on boot but systematically its log states every day that: "No packages found that can be upgraded unattended and no pending auto-removals" even where there are security updates to install. (2) update-manager appears not to refresh the cache automatically after boot. (3) when the cache is manually refreshed so there are updates, update- manager runs after a subsequent boot and appears in the panel. However clicking on it leads it to simply disappear. (4) update-manager will not launch from the menu. When launched from a terminal it runs correctly, refreshes the cache and will install updates. No crash reports, nothing obvious in log files. Ubuntu-MATE 16.10 clean install, fully updated. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu-mate/+bug/1648237/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1648237] [NEW] update-manager and unattended-upgrades failure
Public bug reported: A series of issues about update-manager and unattended-upgrade. I have set the system to: - automatically check for update daily - when there are security updates, download and install them automatically - when there are other updates, display them immediately. What occurs: (1) unattended-upgrade runs on boot but systematically its log states every day that: "No packages found that can be upgraded unattended and no pending auto-removals" even where there are security updates to install. (2) update-manager appears not to refresh the cache automatically after boot. (3) when the cache is manually refreshed so there are updates, update- manager runs after a subsequent boot and appears in the panel. However clicking on it leads it to simply disappear. (4) update-manager will not launch from the menu. When launched from a terminal it runs correctly, refreshes the cache and will install updates. No crash reports, nothing obvious in log files. Ubuntu-MATE 16.10 clean install, fully updated. ** Affects: ubuntu-mate Importance: Undecided Status: New ** Affects: unattended-upgrades (Ubuntu) Importance: Undecided Status: New ** Affects: update-manager (Ubuntu) Importance: Undecided Status: New ** Also affects: update-manager (Ubuntu) Importance: Undecided Status: New ** Summary changed: - update-manager and unattended-upgrade failure + update-manager and unattended-upgrades failure ** Also affects: unattended-upgrades (Ubuntu) Importance: Undecided Status: New -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to unattended-upgrades in Ubuntu. https://bugs.launchpad.net/bugs/1648237 Title: update-manager and unattended-upgrades failure Status in ubuntu-mate: New Status in unattended-upgrades package in Ubuntu: New Status in update-manager package in Ubuntu: New Bug description: A series of issues about update-manager and unattended-upgrade. I have set the system to: - automatically check for update daily - when there are security updates, download and install them automatically - when there are other updates, display them immediately. What occurs: (1) unattended-upgrade runs on boot but systematically its log states every day that: "No packages found that can be upgraded unattended and no pending auto-removals" even where there are security updates to install. (2) update-manager appears not to refresh the cache automatically after boot. (3) when the cache is manually refreshed so there are updates, update- manager runs after a subsequent boot and appears in the panel. However clicking on it leads it to simply disappear. (4) update-manager will not launch from the menu. When launched from a terminal it runs correctly, refreshes the cache and will install updates. No crash reports, nothing obvious in log files. Ubuntu-MATE 16.10 clean install, fully updated. To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu-mate/+bug/1648237/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
[Touch-packages] [Bug 1603620] Re: Package lists are not updated before Unattended upgrades runs automatically.
Also having this problem. Software Updater never automatically launches even if I ask for immediate display of available updates. Unattended-upgrades never installs anything. After forcing a reload of package info then rebooting the next day, I got errors from unattended-upgrades: 2016-11-29 21:06:13,620 ERROR An error occurred: 'Could not resolve 'ubuntu.mirrors.skynet.be'' 2016-11-29 21:06:13,621 ERROR The URI 'http://security.ubuntu.com/ubuntu/pool/main/g/gst-plugins-good1.0/gstreamer1.0-plugins-good_1.8.3-1ubuntu1.2_amd64.deb' failed to download, aborting Looks like both Software Updater and unattended-upgrades are launched before my network is up. -- You received this bug notification because you are a member of Ubuntu Touch seeded packages, which is subscribed to unattended-upgrades in Ubuntu. https://bugs.launchpad.net/bugs/1603620 Title: Package lists are not updated before Unattended upgrades runs automatically. Status in unattended-upgrades package in Ubuntu: Incomplete Bug description: Newest kernel available currently is 4.4.0-31-generic, but $ linux-version list 4.2.0-38-generic 4.4.0-24-generic 4.4.0-28-generic `apt-get dist-upgrade` does not upgrade kernel either, unless I run `apt-get update` first. I wonder why kernel was not upgraded 2016-07-16 morning. ProblemType: Bug DistroRelease: Ubuntu 16.04 Package: unattended-upgrades 0.90 ProcVersionSignature: Ubuntu 4.4.0-28.47-generic 4.4.13 Uname: Linux 4.4.0-28-generic x86_64 NonfreeKernelModules: nvidia_uvm nvidia ApportVersion: 2.20.1-0ubuntu2.1 Architecture: amd64 CurrentDesktop: XFCE Date: Sat Jul 16 11:40:07 2016 EcryptfsInUse: Yes InstallationDate: Installed on 2015-11-21 (237 days ago) InstallationMedia: Xubuntu 15.10 "Wily Werewolf" - Release amd64 (20151021) PackageArchitecture: all SourcePackage: unattended-upgrades UpgradeStatus: Upgraded to xenial on 2016-06-24 (21 days ago) modified.conffile..etc.apt.apt.conf.d.10periodic: APT::Periodic::Update-Package-Lists "1"; APT::Periodic::Download-Upgradeable-Packages "0"; APT::Periodic::AutocleanInterval "0"; APT::Periodic::Unattended-Upgrade "0"; mtime.conffile..etc.apt.apt.conf.d.10periodic: 2016-02-15T22:39:19.560937 mtime.conffile..etc.apt.apt.conf.d.50unattended-upgrades: 2016-06-24T18:13:45.181749 To manage notifications about this bug go to: https://bugs.launchpad.net/ubuntu/+source/unattended-upgrades/+bug/1603620/+subscriptions -- Mailing list: https://launchpad.net/~touch-packages Post to : touch-packages@lists.launchpad.net Unsubscribe : https://launchpad.net/~touch-packages More help : https://help.launchpad.net/ListHelp
