move /etc/ufw/sysctl.conf to /etc/sysctl.d/XX-ufw.conf
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
ufw |
Triaged
|
Wishlist
|
Unassigned |
Bug Description
Setting system variables in a non-standard location is a bit confusing. Please consider moving /etc/ufw/
For example, UFW sets tcp_syncookies to 0 since:
# Change to '1' to enable TCP/IP SYN cookies This disables TCP Window Scaling
# (http://
, but at the same time tcp_syncookies is set to 1 in /etc/sysctl.
# Turn on SYN-flood protections. Starting with 2.6.26, there is no loss
# of TCP functionality/
# protections kick in under high unanswered-SYN load, the system
# should remain more stable, with a trade off of some loss of TCP
# functionality/
In this case the variable setting at the usual places (/etc/sysctl.conf and /etc/sysctl.d/) shows one thing while the live system variable is set differently and you are left wondering which package/
BTW, the system-wide setting for tcp_syncookies as provided by the procps package in /etc/sysctl.
ufw 0.34~rc-0ubuntu2
Ubuntu 14.04 LTS
description: | updated |
Changed in ufw: | |
status: | New → Triaged |
Changed in ufw: | |
importance: | Undecided → Wishlist |