[pkg-netfilter-team] Bug#911777: Bug#911777: iptables: iptables-persistent broken by changed path of iptables-restore
Thorsten Glaser
t.glaser at tarent.de
Fri Oct 26 15:46:03 BST 2018
On Thu, 25 Oct 2018, Arturo Borrero Gonzalez wrote:
> Perhaps iptables-persistent should avoid harcoding binary paths.
But since /sbin (and /usr/sbin) are not in the normal PATH,
recommendation to users was to actually use them with full
paths in user-local/-specific scripts, for years.
Given that /usr/sbin comes before /sbin in the standard
root PATH, perhaps not use compatibility symlinks but
scripts like this:
#!/bin/sh
printf 'WARNING: utility %s invoked from /sbin, this will stop working after the buster release!\n' \
"$0" | tee /dev/stderr | logger -t "$0"
exec /usr/sbin/"${0##*/}" "$@"
That’ll be more visible to users (stderr *plus* syslog).
Thanks for your consideration,
//mirabilos
--
tarent solutions GmbH
Rochusstraße 2-4, D-53123 Bonn • http://www.tarent.de/
Tel: +49 228 54881-393 • Fax: +49 228 54881-235
HRB 5168 (AG Bonn) • USt-ID (VAT): DE122264941
Geschäftsführer: Dr. Stefan Barth, Kai Ebenrett, Boris Esser, Alexander Steeg
More information about the pkg-netfilter-team
mailing list