confusing comments in sysctl.conf

Bug #612573 reported by Frank Meisschaert on 2010-08-02
6
This bug affects 1 person
Affects Status Importance Assigned to Milestone
procps (Ubuntu)
Undecided
Unassigned

Bug Description

Binary package hint: procps

/etc/sysctl.conf says:

# Uncomment the next two lines to enable Spoof protection (reverse-path filter)
# Turn on Source Address Verification in all interfaces to
# prevent some spoofing attacks
#net.ipv4.conf.default.rp_filter=1
#net.ipv4.conf.all.rp_filter=1

This is inconsistent with the current behaviour: /etc/sysctl.d/10-network-security.conf sets these parameters by default. To switch them off you have to set them explicitly to 0 in /etc/sysctl.conf.

The comments should conform to the behaviour. The information in/etc/sysctl.d/README should be in /etc/sysctl.conf, or at least referred to in /etc/sysctl.conf.

ProblemType: Bug
DistroRelease: Ubuntu 10.04
Package: procps 1:3.2.8-1ubuntu4
ProcVersionSignature: Ubuntu 2.6.32-24.38-generic-pae 2.6.32.15+drm33.5
Uname: Linux 2.6.32-24-generic-pae i686
Architecture: i386
Date: Mon Aug 2 16:06:22 2010
InstallationMedia: Ubuntu 10.04 LTS "Lucid Lynx" - Release i386 (20100429)
ProcEnviron:
 PATH=(custom, no user)
 LANG=en_US.UTF-8
 SHELL=/bin/bash
SourcePackage: procps

To post a comment you must log in.
This report contains Public information  Edit
Everyone can see this information.

Other bug subscribers