Bug 199906
Summary: | iptable_nat, ip_conntrack drivers are loaded after sysreport run | ||||||||
---|---|---|---|---|---|---|---|---|---|
Product: | Red Hat Enterprise Linux 4 | Reporter: | masanari iida <masanari_iida> | ||||||
Component: | sysreport | Assignee: | Than Ngo <than> | ||||||
Status: | CLOSED ERRATA | QA Contact: | Ben Levenson <benl> | ||||||
Severity: | medium | Docs Contact: | |||||||
Priority: | medium | ||||||||
Version: | 4.0 | CC: | eparis | ||||||
Target Milestone: | --- | ||||||||
Target Release: | --- | ||||||||
Hardware: | All | ||||||||
OS: | Linux | ||||||||
Whiteboard: | |||||||||
Fixed In Version: | RHBA-2006-0723 | Doc Type: | Bug Fix | ||||||
Doc Text: | Story Points: | --- | |||||||
Clone Of: | Environment: | ||||||||
Last Closed: | 2006-11-16 19:58:00 UTC | Type: | --- | ||||||
Regression: | --- | Mount Type: | --- | ||||||
Documentation: | --- | CRM: | |||||||
Verified Versions: | Category: | --- | |||||||
oVirt Team: | --- | RHEL 7.3 requirements from Atomic Host: | |||||||
Cloudforms Team: | --- | Target Upstream Version: | |||||||
Embargoed: | |||||||||
Attachments: |
|
Description
masanari iida
2006-07-24 08:39:21 UTC
Created attachment 138394 [details]
Patch to add --nofirewall switch to deny the probing of iptables rules.
This option stops the query of iptables rules. This can be if there are
sensitive information about network infrastructure that the customer may not
wish to reveal, or that the loading probing of certain tables can cause
unwanted modules to load, therefore changing the system behavior.
--nofirewall option added to sysreport.
Seems to work with initial testing on my end. This patch might already be
uploaded, but I'll do this anyway because I can't see the private information
in this bug.
Wade
Created attachment 138974 [details]
final fix
The patch looks ok for me. I have modified the path and there's the final fix
for the issue. Wade, thanks for the fix
An advisory has been issued which should help the problem described in this bug report. This report is therefore being closed with a resolution of ERRATA. For more information on the solution and/or where to find the updated files, please follow the link below. You may reopen this bug report if the solution does not work for you. http://rhn.redhat.com/errata/RHBA-2006-0723.html As I installed latest sysreport, I found Red Hat engineer add "--firewall" option, instead of "--nofirewall" option. This last min change should be noted here, unless I have to report that I found some typo in the official release :) The change in the final fix has been modified. It's '-firewall' now and is disable by default. |