Bug 461650 - Firewall is disabled but it stills print a notice telling that the security is at maximum level
Summary: Firewall is disabled but it stills print a notice telling that the security i...
Keywords:
Status: CLOSED CURRENTRELEASE
Alias: None
Product: Red Hat HPC Solution
Classification: Red Hat
Component: ocs
Version: 5.1
Hardware: All
OS: Linux
medium
medium
Target Milestone: ---
Assignee: OCS Support
QA Contact:
URL:
Whiteboard:
Depends On:
Blocks:
TreeView+ depends on / blocked
 
Reported: 2008-09-09 18:24 UTC by Rafael Garabato
Modified: 2008-09-29 19:09 UTC (History)
3 users (show)

Fixed In Version: ntop-3.3-2.el5
Doc Type: Bug Fix
Doc Text:
Clone Of:
Environment:
Last Closed: 2008-09-29 19:09:58 UTC
Target Upstream Version:
Embargoed:


Attachments (Terms of Use)

Description Rafael Garabato 2008-09-09 18:24:01 UTC
Description of problem:
I have installed RED HAT with the firewall and selinux completely disabled but When I configured ocs a notice appeared saying that the security level was at maximum.

Version-Release number of selected component (if applicable):
ocs.noarch                               5.1-3

How reproducible:
Never tried again.

Steps to Reproduce:
1.Install Red Hat 5.2 with DVD and disable SELINUX and Firewall
2. yum install ocs
3. . /etc/profile.d/kusuenv.sh
4. /opt/kusu/sbin/ocs-setup
  
Actual results:
------------------------------------------------------------------


NOTICE: The default Red Hat firewall configuration blocks
        almost all ports.  It is necessary to open these
        ports for the various HPC applications to work.
        You can manually open these ports or run the following
        to generate new firewall rules:
        # /opt/kusu/bin/kusurc /opt/kusu/etc/S02KusuIptables.rc.py


------------------------------------------------------------------

Congratulations!  The base kit is installed and configured to provision on:

   Network 10.0.0.0 on interface eth0


[root@rhhpcml ~]# cat /etc/sysconfig/system-config-securitylevel
# Configuration file for system-config-securitylevel

--disabled
--port=22:tcp

[root@rhhpcml ~]# cat /etc/selinux/config
# This file controls the state of SELinux on the system.
# SELINUX= can take one of these three values:
#       enforcing - SELinux security policy is enforced.
#       permissive - SELinux prints warnings instead of enforcing.
#       disabled - SELinux is fully disabled.
SELINUX=disabled
# SELINUXTYPE= type of policy in use. Possible values are:
#       targeted - Only targeted network daemons are protected.
#       strict - Full SELinux protection.
SELINUXTYPE=targeted


Expected results:


Additional info:

Comment 1 OCS Support 2008-09-18 16:02:01 UTC
The ocs-setup script has been changed to detect if the firewall is running.  If the firewall is running it will now provide the prompt.

The fix will be in the ocs package version 5.1-5 or better

Comment 2 OCS Support 2008-09-29 13:36:04 UTC
Fix passes QA


Note You need to log in before you can comment on or make changes to this bug.