Ubuntu
fwsnort package

fwsnort fails in 14.04

Bug #1705218 reported by Rituraj B
12
This bug affects 1 person
Affects Status Importance Assigned to Milestone
fwsnort (Debian)
Fix Released
Unknown
fwsnort (Ubuntu)
Confirmed
Undecided
Unassigned

Bug Description

What I did:
- Update the snort rules: sudo fwsnort --update-rules
- Run fwsnort: sudo fwsnort
- instantiate the fwsnort policy: sudo /var/lib/fwsnort/fwsnort.sh

The result:

[+] Splicing fwsnort 11647 rules into the iptables policy...
iptables-restore v1.6.0: invalid port/service `[6789]' specified
Error occurred at line: 11464
Try `iptables-restore -h' or 'iptables-restore --help' for more information.

This is a bug which is fixed in upstream version of fwsnort 1.6.7

The discussion is on the below forum:

https://superuser.com/questions/1189290/fwsnort-wont-apply-rules-in-iptables

System Information

lsb_release -rd
Description: Ubuntu 14.04.5 LTS
Release: 14.04

Related branches

lp:~jr/ubuntu-packaging-guide/04-security-and-stable-release-updates
Barry Warsaw (community): Approve
Diff: 280 lines (+67/-140)
3 files modified
fixing-a-bug.rst (+10/-4)
index.rst (+1/-1)
security-and-stable-release-updates.rst (+56/-135)
Revision history for this message
Rituraj B (riturajb) wrote :

Please assign this to branch Trusty (14.04)

affects: xubuntu-meta (Ubuntu) → fwsnort (Ubuntu)
Revision history for this message
Rituraj B (riturajb) wrote :

This bug affects another user as well hence changing the status to "confirmed".

Changed in fwsnort (Ubuntu):
status: New → Confirmed
Revision history for this message
Rituraj B (riturajb) wrote :

Adding Mhall in the loop as the package maintenar for this package is "ubuntu-devel-discuss" and being one of the owner of the list.
Please note - this is a security issue , but I did not find a way to raise flag for the same after filling the bug.

Revision history for this message
Rituraj B (riturajb) wrote :

https://launchpad.net/ubuntu/+source/fwsnort/1.6.7-3

The source is uploaded to unstable by Adrian Bunk

Bug Watch Updater (bug-watch-updater)
Changed in fwsnort (Debian):
status: Unknown → Fix Released
Revision history for this message
Rituraj B (riturajb) wrote :

The patch is not released for Ubuntu. Cause it still does not work in Ubuntu.

There has been no action on this bug - it has not been assigned to anyone so far !!

Revision history for this message
Naresh Khalasi (nkhalasi) wrote : Re: [Bug 1705218] Re: fwsnort fails in 14.04

But it works on ubuntu 16.04 by creating the service definition?

-- Sent from my iPhone --

> On 24-Oct-2017, at 19:48, Rituraj B <email address hidden> wrote:
>
> The patch is not released for Ubuntu. Cause it still does not work in
> Ubuntu.
>
> There has been no action on this bug - it has not been assigned to
> anyone so far !!
>
> --
> You received this bug notification because you are subscribed to the bug
> report.
> https://bugs.launchpad.net/bugs/1705218
>
> Title:
> fwsnort fails in 14.04
>
> Status in fwsnort package in Ubuntu:
> Confirmed
> Status in fwsnort package in Debian:
> Fix Released
>
> Bug description:
> What I did:
> - Update the snort rules: sudo fwsnort --update-rules
> - Run fwsnort: sudo fwsnort
> - instantiate the fwsnort policy: sudo /var/lib/fwsnort/fwsnort.sh
>
> The result:
>
> [+] Splicing fwsnort 11647 rules into the iptables policy...
> iptables-restore v1.6.0: invalid port/service `[6789]' specified
> Error occurred at line: 11464
> Try `iptables-restore -h' or 'iptables-restore --help' for more information.
>
> This is a bug which is fixed in upstream version of fwsnort 1.6.7
>
> The discussion is on the below forum:
>
> https://superuser.com/questions/1189290/fwsnort-wont-apply-rules-in-
> iptables
>
> System Information
>
> lsb_release -rd
> Description: Ubuntu 14.04.5 LTS
> Release: 14.04
>
> To manage notifications about this bug go to:
> https://bugs.launchpad.net/ubuntu/+source/fwsnort/+bug/1705218/+subscriptions

To post a comment you must log in.
This report contains Public information  
Everyone can see this information.
Subscribing...

Other bug subscribers

Remote bug watches

Bug watches keep track of this bug in other bug trackers.