Adding rules to the locked firewall to log packets showed these
connection attempts on attempting to unlock:
Jun 19 15:29:42 kotuku kernel: [546262.683765] IN= OUT=lo SRC=127.0.0.1
DST=127.0.0.1 LEN=44 TOS=0x00 PREC=0x00 TTL=64 ID=37291 DF PROTO=TCP SPT=58463
DPT=16001 WINDOW=32792 RES=0x00 SYN URGP=0
Jun 19 15:30:06 kotuku kernel: [546286.682588] IN= OUT=lo SRC=127.0.0.1
DST=127.0.0.1 LEN=44 TOS=0x00 PREC=0x00 TTL=64 ID=37292 DF PROTO=TCP SPT=58463
DPT=16001 WINDOW=32792 RES=0x00 SYN URGP=0
Jun 19 15:30:54 kotuku kernel: [546334.680286] IN= OUT=lo SRC=127.0.0.1
DST=127.0.0.1 LEN=44 TOS=0x00 PREC=0x00 TTL=64 ID=37293 DF PROTO=TCP SPT=58463
DPT=16001 WINDOW=32792 RES=0x00 SYN URGP=0
Jun 19 15:32:30 kotuku kernel: [546430.675667] IN= OUT=lo SRC=127.0.0.1
DST=127.0.0.1 LEN=44 TOS=0x00 PREC=0x00 TTL=64 ID=37294 DF PROTO=TCP SPT=58463
DPT=16001 WINDOW=32792 RES=0x00 SYN URGP=0
lsof then revealed:
firestart 19833 root 15u IPv4 93038
TCP localhost:59731->localhost:16001 (SYN_SENT)
Port 16001 is used by esound so I assume firestarter is failing to cope
with it's inability to contact the sound server which it has been walled
off by firestarter.
Perhaps firestarter should add rules to allow traffic from localhost to
localhost before setting all the table policies to DENY.
--
[Hardy]locking the firewall using Firestarter destabilises the entire X-Server
https://bugs.launchpad.net/bugs/184017
You received this bug notification because you are a member of Ubuntu
Bugs, which is subscribed to Ubuntu.
--
ubuntu-bugs mailing list
[email protected]
https://lists.ubuntu.com/mailman/listinfo/ubuntu-bugs
