Backwards-compatible /proc and sysctl conntrack entries
Dave Jones
davej at redhat.com
Tue Mar 27 21:34:48 UTC 2007
On Tue, Mar 27, 2007 at 03:13:22PM -0400, Chuck Ebbert wrote:
> Josh Boyer wrote:
> >> Users also have firewall configuration scripts that rely on these
> >> entries.
> >
> > Damn. That does suck.
> >
> > So how long does upstream intend to keep CONFIG_NF_CONNTRACK_PROC_COMPAT
> > around?
>
> Until FC-6 dies, hopefully... :)
>
> A new comment in bz 234174 is interesting:
>
> | Or, ideally, the kernel rpm should look into obvious places (e.g.
> | /etc/sysconfig/iptables-config, /etc/sysctl.conf) and do some perl -pie magic.
This would break booting back into the earlier kernel (which used to work
until we munged these files).
I think enabling the compat stuff for FC6's lifetime should be safe.
Hopefully upstream won't rip them out too soon.
Dave
--
http://www.codemonkey.org.uk
More information about the Fedora-kernel-list
mailing list