--- mason-1.0.0.orig/debian/postinst +++ mason-1.0.0/debian/postinst @@ -22,9 +22,20 @@ # installation fails and the `postinst' is called with `abort-upgrade', # `abort-remove' or `abort-deconfigure'. +# We now use debconf +. /usr/share/debconf/confmodule + case "$1" in configure) - /usr/sbin/update-rc.d mason defaults 19 > /dev/null + if [ `egrep '^[:space:]*NEWRULEPOLICY' /etc/masonrc | wc -l` -eq 0 ] + then + db_get mason/newrulepolicy + echo "NEWRULEPOLICY=$RET" >> /etc/masonrc + db_get mason/defaultpolicy + echo "DEFAULTPOLICY=$RET" >> /etc/masonrc + fi + /usr/sbin/update-rc.d -f mason remove > /dev/null + /usr/sbin/update-rc.d mason start 41 S . > /dev/null ;; abort-upgrade|abort-remove|abort-deconfigure) --- mason-1.0.0.orig/debian/copyright +++ mason-1.0.0/debian/copyright @@ -1,9 +1,9 @@ -This package was debianized by Jeff Licquia jeff@luci.org on +This package was debianized by Jeff Licquia on Wed, 31 Mar 1999 21:49:35 -0600. It was downloaded from http://www.pobox.com/~wstearns/mason/ -Upstream Author(s): William Stearns +Upstream Author: William Stearns Copyright (C) 1998-2002 William Stearns @@ -20,4 +20,4 @@ GNU General Public License for more details. --- On Debian GNU/Linux systems, the complete text of the GNU General -Public License can be found in /usr/doc/copyright/GPL'. +Public License can be found in /usr/share/common-licenses/GPL'. --- mason-1.0.0.orig/debian/control +++ mason-1.0.0/debian/control @@ -1,13 +1,15 @@ Source: mason Section: net Priority: extra -Maintainer: Jeff Licquia -Standards-Version: 3.0.0 +Maintainer: Thomas Scheffczyk +Uploaders: Christoph Martin +Standards-Version: 3.7.3 +Build-Depends: debhelper (>= 5), po-debconf Package: mason Architecture: all -Depends: bash -Description: Interactively creates a Linux packet filtering firewall. +Depends: bash (>= 2.04-1), debconf (>= 1.2.0) | debconf-2.0 +Description: Interactively creates a Linux packet filtering firewall Mason creates a firewall that exactly matches the types of TCP/IP traffic flowing in, out and through a Linux computer. It can be used to create a full firewall or add rules to an --- mason-1.0.0.orig/debian/rules +++ mason-1.0.0/debian/rules @@ -19,9 +19,10 @@ dh_testdir dh_testroot rm -f build-stamp install-stamp + debconf-updatepo # Add here commands to clean up after the build process. - -$(MAKE) clean + #-$(MAKE) clean dh_clean @@ -33,21 +34,25 @@ dh_installdirs # Make directories - mkdir -p `pwd`/debian/tmp/usr/bin - mkdir -p `pwd`/debian/tmp/usr/share/man/man1 - mkdir -p `pwd`/debian/tmp/var/lib/mason - mkdir -p `pwd`/debian/tmp/etc/init.d - - # Add here commands to install the package into debian/tmp. - $(MAKE) install DESTDIR=`pwd`/debian/tmp \ - DOCDIR=`pwd`/debian/tmp/usr/share/doc/mason/ \ - MANDIR=`pwd`/debian/tmp/usr/share/man/man1/ \ - SYSVDIR=`pwd`/debian/tmp/etc/init.d/ + mkdir -p `pwd`/debian/mason/usr/bin + mkdir -p `pwd`/debian/mason/usr/share/man/man1 + mkdir -p `pwd`/debian/mason/var/lib/mason + mkdir -p `pwd`/debian/mason/etc/init.d + + # Add here commands to install the package into debian/mason. + $(MAKE) install DESTDIR=`pwd`/debian/mason \ + DOCDIR=`pwd`/debian/mason/usr/share/doc/mason/ \ + MANDIR=`pwd`/debian/mason/usr/share/man/man1/ \ + SYSVDIR=`pwd`/debian/mason/etc/init.d/ + + install samlib `pwd`/debian/mason/var/lib/mason/ # Miscellaneous cleanup - mv debian/tmp/etc/init.d/firewall debian/tmp/etc/init.d/mason - rm debian/tmp/usr/share/doc/mason/COPYING - chmod +x debian/tmp/var/lib/mason/regression-test + mv debian/mason/etc/init.d/firewall debian/mason/etc/init.d/mason + rm debian/mason/usr/share/doc/mason/COPYING + chmod +x debian/mason/var/lib/mason/regression-test + mv debian/mason/var/lib/mason/baserules debian/mason/etc/mason.baserules + ln -sf /etc/mason.baserules debian/mason/var/lib/mason/baserules touch install-stamp @@ -69,6 +74,7 @@ # dh_installmanpages # dh_undocumented dh_installchangelogs + dh_installdebconf dh_strip dh_compress dh_fixperms --- mason-1.0.0.orig/debian/po/POTFILES.in +++ mason-1.0.0/debian/po/POTFILES.in @@ -0,0 +1 @@ +[type: gettext/rfc822deb] templates --- mason-1.0.0.orig/debian/po/da.po +++ mason-1.0.0/debian/po/da.po @@ -0,0 +1,94 @@ +# +# Translators, if you are not familiar with the PO format, gettext +# documentation is worth reading, especially sections dedicated to +# this format, e.g. by running: +# info -n '(gettext)PO Files' +# info -n '(gettext)Header Entry' +# Some information specific to po-debconf are available at +# /usr/share/doc/po-debconf/README-trans +# or http://www.debian.org/intl/l10n/po-debconf/README-trans# +# Developers do not need to manually edit POT or PO files. +# Claus Hindsgaul , 2005. +# +msgid "" +msgstr "" +"Project-Id-Version: Mason debconf\n" +"Report-Msgid-Bugs-To: thomas.scheffczyk@verwaltung.uni-mainz.de\n" +"POT-Creation-Date: 2007-03-14 10:38+0000\n" +"PO-Revision-Date: 2005-07-20 18:14+0200\n" +"Last-Translator: Claus Hindsgaul \n" +"Language-Team: Danish \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=ISO-8859-1\n" +"Content-Transfer-Encoding: 8bit\n" +"X-Generator: KBabel 1.9.1\n" + +#. Type: select +#. Choices +#. Type: select +#. Choices +#: ../templates:1001 ../templates:2001 +msgid "accept, reject, deny" +msgstr "Acceptér, Afvis, Nægt" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "Default action for new firewall rules:" +msgstr "Standardhandling for nye brandmurs-regler:" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"When Mason detects a new kind of traffic and creates a rule for it, what " +"action should the rule take?" +msgstr "" +"Når Mason opdager en nye type trafik og laver en regel for det, hvilken " +"handling skal reglen så resultere i?" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"The \"accept\" action will allow the packet through. \"Reject\" will stop " +"the packet with a rejection reply, while \"deny\" will drop the packet " +"silently." +msgstr "" +"\"Acceptér\"-handlingen vil lade pakke passere. \"Afvis\" vil stoppe pakken " +"med et afvisningssvar, imens \"Nægt\" vil smide pakken væk uden at melde " +"tilbage." + +#. Type: select +#. Description +#: ../templates:2002 +msgid "Default action for rulesets:" +msgstr "Standardhandling for regelsæt:" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"What should the default action be when a packet does not match any of the " +"rules set up by Mason?" +msgstr "" +"Hvad skal være standardhandlingen for en pakke, der ikke passer til nogle af " +"de regler, Mason har sat op?" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"Again, \"accept\" allows the packet through, \"reject\" drops the packet " +"with a reply, and \"deny\" silently drops the packet." +msgstr "" +"Igen vil \"Acceptér\"-handlingen lade pakken passere, \"Afvis\" vil stoppe " +"pakken med et afvisningssvar, mens \"Nægt\" vil smide pakken ud uden at " +"melde tilbage." + +#~ msgid "Which action should Mason use by default for new firewall rules?" +#~ msgstr "" +#~ "Hvilken handling skal Mason bruge som standard for nye firewall regler?" + +#~ msgid "Which action should be Mason's default action for rulesets?" +#~ msgstr "Hvilken handling skal være Masons standard handling for regelsæt?" --- mason-1.0.0.orig/debian/po/cs.po +++ mason-1.0.0/debian/po/cs.po @@ -0,0 +1,86 @@ +# +# Translators, if you are not familiar with the PO format, gettext +# documentation is worth reading, especially sections dedicated to +# this format, e.g. by running: +# info -n '(gettext)PO Files' +# info -n '(gettext)Header Entry' +# +# Some information specific to po-debconf are available at +# /usr/share/doc/po-debconf/README-trans +# or http://www.debian.org/intl/l10n/po-debconf/README-trans +# +# Developers do not need to manually edit POT or PO files. +# +msgid "" +msgstr "" +"Project-Id-Version: mason\n" +"Report-Msgid-Bugs-To: thomas.scheffczyk@verwaltung.uni-mainz.de\n" +"POT-Creation-Date: 2007-03-14 10:38+0000\n" +"PO-Revision-Date: 2005-03-25 18:57+0100\n" +"Last-Translator: Miroslav Kure \n" +"Language-Team: Czech \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=ISO-8859-2\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: select +#. Choices +#. Type: select +#. Choices +#: ../templates:1001 ../templates:2001 +msgid "accept, reject, deny" +msgstr "povolit, odmítnout, zakázat" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "Default action for new firewall rules:" +msgstr "Výchozí akce pro nová pravidla firewallu:" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"When Mason detects a new kind of traffic and creates a rule for it, what " +"action should the rule take?" +msgstr "" +"Kdy¾ Mason rozpozná nový druh provozu a vytvoøí pro nìj pravidlo, jak se má " +"pravidlo chovat?" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"The \"accept\" action will allow the packet through. \"Reject\" will stop " +"the packet with a rejection reply, while \"deny\" will drop the packet " +"silently." +msgstr "" +"Akce \"povolit\" paket propustí, akce \"odmítnout\" paket zastaví s odpovìdí " +"zamítnuto a akce \"zakázat\" paket potichu zahodí." + +#. Type: select +#. Description +#: ../templates:2002 +msgid "Default action for rulesets:" +msgstr "Výchozí akce:" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"What should the default action be when a packet does not match any of the " +"rules set up by Mason?" +msgstr "" +"Která akce se má vykonat, jestli¾e paket nevyhovuje ¾ádnému z pravidel " +"nastavených v programu Mason?" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"Again, \"accept\" allows the packet through, \"reject\" drops the packet " +"with a reply, and \"deny\" silently drops the packet." +msgstr "" +"Analogicky: \"povolit\" paket propustí, \"odmítnout\" paket zahodí s " +"odpovìdí zamítnuto a \"zakázat\" paket zahodí, ani¾ by o tom dal protistranì " +"vìdìt." --- mason-1.0.0.orig/debian/po/fr.po +++ mason-1.0.0/debian/po/fr.po @@ -0,0 +1,85 @@ +# +# Translators, if you are not familiar with the PO format, gettext +# documentation is worth reading, especially sections dedicated to +# this format, e.g. by running: +# info -n '(gettext)PO Files' +# info -n '(gettext)Header Entry' +# +# Some information specific to po-debconf are available at +# /usr/share/doc/po-debconf/README-trans +# or http://www.debian.org/intl/l10n/po-debconf/README-trans +# +# Developers do not need to manually edit POT or PO files. +# +msgid "" +msgstr "" +"Project-Id-Version: mason\n" +"Report-Msgid-Bugs-To: thomas.scheffczyk@verwaltung.uni-mainz.de\n" +"POT-Creation-Date: 2007-03-14 10:38+0000\n" +"PO-Revision-Date: 2005-03-25 08:27+0100\n" +"Last-Translator: Steve Petruzzello \n" +"Language-Team: French \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=ISO-8859-15\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: select +#. Choices +#. Type: select +#. Choices +#: ../templates:1001 ../templates:2001 +msgid "accept, reject, deny" +msgstr "accepter, rejeter, refuser" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "Default action for new firewall rules:" +msgstr "Action par défaut pour les nouvelles règles du pare-feu :" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"When Mason detects a new kind of traffic and creates a rule for it, what " +"action should the rule take?" +msgstr "" +"Veuillez choisir l'action à réaliser quand Mason détecte un nouveau type de " +"trafic et crée une règle pour celui-ci." + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"The \"accept\" action will allow the packet through. \"Reject\" will stop " +"the packet with a rejection reply, while \"deny\" will drop the packet " +"silently." +msgstr "" +"« accepter » laisse passer le paquet. « rejeter » le rejette en émettant une " +"réponse de rejet, enfin « refuser » le rejette silencieusement." + +#. Type: select +#. Description +#: ../templates:2002 +msgid "Default action for rulesets:" +msgstr "Action par défaut pour les jeux de règles :" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"What should the default action be when a packet does not match any of the " +"rules set up by Mason?" +msgstr "" +"Veuillez choisir l'action par défaut pour un paquet qui ne correspond à " +"aucune règle établie par Mason." + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"Again, \"accept\" allows the packet through, \"reject\" drops the packet " +"with a reply, and \"deny\" silently drops the packet." +msgstr "" +"« accepter » laisse passer le paquet, « rejeter » le rejette en émettant une " +"réponse de rejet et « refuser » le rejette silencieusement." --- mason-1.0.0.orig/debian/po/nb.po +++ mason-1.0.0/debian/po/nb.po @@ -0,0 +1,75 @@ +# mason +# Copyright (C) 2001 Free Software Foundation, Inc. +# Hans Fredrik Nordhaug , 2005 +msgid "" +msgstr "" +"Project-Id-Version: mason\n" +"Report-Msgid-Bugs-To: thomas.scheffczyk@verwaltung.uni-mainz.de\n" +"POT-Creation-Date: 2007-03-14 10:38+0000\n" +"PO-Revision-Date: 2005-03-29 23:08+0100\n" +"Last-Translator: Hans Fredrik Nordhaug \n" +"Language-Team: Norwegian Bokmål \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=ISO-8859-1\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: select +#. Choices +#. Type: select +#. Choices +#: ../templates:1001 ../templates:2001 +msgid "accept, reject, deny" +msgstr "tillat, avvis, nekt" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "Default action for new firewall rules:" +msgstr "Standard handling for nye brannmurregler:" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"When Mason detects a new kind of traffic and creates a rule for it, what " +"action should the rule take?" +msgstr "" +"Når Mason opdager en ny type trafikk og lager en regel for det, hvilken " +"handling skal regelen så ta?" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"The \"accept\" action will allow the packet through. \"Reject\" will stop " +"the packet with a rejection reply, while \"deny\" will drop the packet " +"silently." +msgstr "" +"«tillat»-handlingen vil tillate pakken. «avvis» vil stoppe pakken med et " +"avvisningssvar, mens «nekt» vil droppe pakken uten å melde tilbake." + +#. Type: select +#. Description +#: ../templates:2002 +msgid "Default action for rulesets:" +msgstr "Standard handling for regelsett:" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"What should the default action be when a packet does not match any of the " +"rules set up by Mason?" +msgstr "" +"Hva skal være standard handling, når en pakke ikke passer til noen av " +"reglene satt opp av Mason?" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"Again, \"accept\" allows the packet through, \"reject\" drops the packet " +"with a reply, and \"deny\" silently drops the packet." +msgstr "" +"Igjen, «tillat»-handlingen vil tillate pakken. «avvis» vil stoppe pakken med " +"et avvisningssvar, mens «nekt» vil droppe pakken uten å melde tilbake." --- mason-1.0.0.orig/debian/po/pt_BR.po +++ mason-1.0.0/debian/po/pt_BR.po @@ -0,0 +1,87 @@ +# Translators, if you are not familiar with the PO format, gettext +# documentation is worth reading, especially sections dedicated to +# this format, e.g. by running: +# info -n '(gettext)PO Files' +# info -n '(gettext)Header Entry' +# Some information specific to po-debconf are available at +# /usr/share/doc/po-debconf/README-trans +# or http://www.debian.org/intl/l10n/po-debconf/README-trans +# Developers do not need to manually edit POT or PO files. +# +# +msgid "" +msgstr "" +"Project-Id-Version: mason 1.0.0\n" +"Report-Msgid-Bugs-To: thomas.scheffczyk@verwaltung.uni-mainz.de\n" +"POT-Creation-Date: 2007-03-14 10:38+0000\n" +"PO-Revision-Date: 2005-03-25 05:09-0300\n" +"Last-Translator: Felipe Augusto van de Wiel (faw) \n" +"Language-Team: Portuguese/Brazil \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=iso-8859-1\n" +"Content-Transfer-Encoding: 8bit\n" +"pt_BR\n" + +#. Type: select +#. Choices +#. Type: select +#. Choices +#: ../templates:1001 ../templates:2001 +msgid "accept, reject, deny" +msgstr "aceitar, rejeitar, negar" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "Default action for new firewall rules:" +msgstr "Ação \"default\" para novas regras de firewall:" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"When Mason detects a new kind of traffic and creates a rule for it, what " +"action should the rule take?" +msgstr "" +"Quando Mason detectar um novo tipo de tráfego e criar uma nova regra para " +"ele, qual ação a regra deve tomar?" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"The \"accept\" action will allow the packet through. \"Reject\" will stop " +"the packet with a rejection reply, while \"deny\" will drop the packet " +"silently." +msgstr "" +"A ação \"aceitar (accept)\" permitirá que o pacote passe. \"Rejeitar (reject)" +"\" vai parar o pacote com uma resposta de rejeição, enquanto \"negar (deny)" +"\" vai descartar o pacote silenciosamente." + +#. Type: select +#. Description +#: ../templates:2002 +msgid "Default action for rulesets:" +msgstr "Ação \"default\" para os conjuntos de regras:" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"What should the default action be when a packet does not match any of the " +"rules set up by Mason?" +msgstr "" +"Qual deverá ser a ação \"default\" quando um pacote não se encaixar em " +"nenhum dos conjuntos de regras configurados no Mason?" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"Again, \"accept\" allows the packet through, \"reject\" drops the packet " +"with a reply, and \"deny\" silently drops the packet." +msgstr "" +"Novamente, \"aceitar (accept)\" permite que o pacote passe, \"rejeitar " +"(reject)\" descarta o pacote com uma resposta, e \"negar (deny)\" " +"silenciosamente descarta o pacote." --- mason-1.0.0.orig/debian/po/vi.po +++ mason-1.0.0/debian/po/vi.po @@ -0,0 +1,78 @@ +# Vietnamese Translation for mason. +# Copyright © 2005 Free Software Foundation, Inc. +# Clytie Siddall , 2005. +# +msgid "" +msgstr "" +"Project-Id-Version: mason 1.0.0-2.1\n" +"Report-Msgid-Bugs-To: thomas.scheffczyk@verwaltung.uni-mainz.de\n" +"POT-Creation-Date: 2007-03-14 10:38+0000\n" +"PO-Revision-Date: 2005-06-10 13:20+0930\n" +"Last-Translator: Clytie Siddall \n" +"Language-Team: Vietnamese \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=utf-8\n" +"Content-Transfer-Encoding: 8bit\n" +"Plural-Forms: nplurals=1; plural=0\n" + +#. Type: select +#. Choices +#. Type: select +#. Choices +#: ../templates:1001 ../templates:2001 +msgid "accept, reject, deny" +msgstr "chấp nhận, bác bá», từ chối" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "Default action for new firewall rules:" +msgstr "Hành Ä‘á»™ng mặc định cho các quy tắc bức tÆ°á»ng lá»­a má»›i:" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"When Mason detects a new kind of traffic and creates a rule for it, what " +"action should the rule take?" +msgstr "" +"Khi trình Mason phát hiện má»™t cách truyá»n má»›i, và tạo má»™t quy tắc cho nó, " +"quy tắc ấy nên làm gì?" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"The \"accept\" action will allow the packet through. \"Reject\" will stop " +"the packet with a rejection reply, while \"deny\" will drop the packet " +"silently." +msgstr "" +"Hành Ä‘á»™ng «chấp nhận» sẽ cho phép gói tin ấy đến qua. «Bác bá»Â» sẽ ngừng gói " +"tin ấy, và trả lá»i nhÆ° thế, và «Từ chối» sẽ bá» gói tin này, không xuất thông " +"tin nào." + +#. Type: select +#. Description +#: ../templates:2002 +msgid "Default action for rulesets:" +msgstr "Hành Ä‘á»™ng mặc định cho bá»™ quy tắc:" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"What should the default action be when a packet does not match any of the " +"rules set up by Mason?" +msgstr "" +"Khi má»™t gói tin không khá»›p vá»›i quy tắc nào do trình Mason thiết lập, Mason " +"nên làm gì?" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"Again, \"accept\" allows the packet through, \"reject\" drops the packet " +"with a reply, and \"deny\" silently drops the packet." +msgstr "" +"Lần nữa, «chấp nhận» cho phép gói tin ấy đến qua, «Bác bá»Â» bá» gói tin ấy vá»›i " +"má»™t trả lá»i, và «Từ chối» chỉ bá» nó thôi." --- mason-1.0.0.orig/debian/po/sv.po +++ mason-1.0.0/debian/po/sv.po @@ -0,0 +1,87 @@ +# +# Translators, if you are not familiar with the PO format, gettext +# documentation is worth reading, especially sections dedicated to +# this format, e.g. by running: +# info -n '(gettext)PO Files' +# info -n '(gettext)Header Entry' +# +# Some information specific to po-debconf are available at +# /usr/share/doc/po-debconf/README-trans +# or http://www.debian.org/intl/l10n/po-debconf/README-trans +# +# Developers do not need to manually edit POT or PO files. +# +msgid "" +msgstr "" +"Project-Id-Version: mason 1.0.0-4\n" +"Report-Msgid-Bugs-To: thomas.scheffczyk@verwaltung.uni-mainz.de\n" +"POT-Creation-Date: 2007-03-14 10:38+0000\n" +"PO-Revision-Date: 2005-10-20 00:13+0100\n" +"Last-Translator: Daniel Nylander \n" +"Language-Team: Swedish \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=iso-8859-1\n" +"Content-Transfer-Encoding: 8bit\n" +"X-Poedit-Language: swed\n" +"X-Poedit-Country: swed\n" + +#. Type: select +#. Choices +#. Type: select +#. Choices +#: ../templates:1001 ../templates:2001 +msgid "accept, reject, deny" +msgstr "acceptera, förkasta, neka" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "Default action for new firewall rules:" +msgstr "Standardåtgärd för nya brandsväggsregler:" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"When Mason detects a new kind of traffic and creates a rule for it, what " +"action should the rule take?" +msgstr "" +"När Mason detekterar en ny sorts trafik och skapar en regel för det, vilken " +"åtgärd ska regeln ta?" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"The \"accept\" action will allow the packet through. \"Reject\" will stop " +"the packet with a rejection reply, while \"deny\" will drop the packet " +"silently." +msgstr "" +"\"Acceptera\" släpper igenom paketet. \"Förkasta\" kastar paketet och " +"skickar ett svar medans \"neka\" kastar paketet utan att informera någon." + +#. Type: select +#. Description +#: ../templates:2002 +msgid "Default action for rulesets:" +msgstr "Standardåtgärd för regeluppsättning:" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"What should the default action be when a packet does not match any of the " +"rules set up by Mason?" +msgstr "" +"Vad ska vara standardåtgärden när ett paket inte matchar någon av de regler " +"i uppsättningen av Mason?" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"Again, \"accept\" allows the packet through, \"reject\" drops the packet " +"with a reply, and \"deny\" silently drops the packet." +msgstr "" +"Igen, \"acceptera\" släpper igenom paketet, \"förkasta\" kastar paketet och " +"skickar ett svar och \"neka\" kastar paketet utan att informera någon." --- mason-1.0.0.orig/debian/po/de.po +++ mason-1.0.0/debian/po/de.po @@ -0,0 +1,78 @@ +# Translation of mason debconf templates to German +# Copyright (C) Helge Kreutzmann , 2007. +# This file is distributed under the same license as the mason package. +# +msgid "" +msgstr "" +"Project-Id-Version: mason 1.0.0-4.1\n" +"Report-Msgid-Bugs-To: thomas.scheffczyk@verwaltung.uni-mainz.de\n" +"POT-Creation-Date: 2006-11-04 18:30+0100\n" +"PO-Revision-Date: 2007-02-18 18:22+0100\n" +"Last-Translator: Helge Kreutzmann \n" +"Language-Team: German \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=ISO-8859-15\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: select +#. Choices +#. Type: select +#. Choices +#: ../templates:1001 ../templates:2001 +msgid "accept, reject, deny" +msgstr "akzeptieren, ablehnen, verweigern" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "Default action for new firewall rules:" +msgstr "Standard-Aktion für neue Firewall-Regeln:" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"When Mason detects a new kind of traffic and creates a rule for it, what " +"action should the rule take?" +msgstr "" +"Wenn Mason neuartigen Verkehr erkennt und eine Regel dafür erstellt, welche " +"Aktion soll diese Regel ausführen?" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"The \"accept\" action will allow the packet through. \"Reject\" will stop " +"the packet with a rejection reply, while \"deny\" will drop the packet " +"silently." +msgstr "" +"Die Aktion »akzeptieren« wird das Paket durchlassen. »Ablehnen« wird das " +"Paket anhalten mit einer Ablehnungsantwort, während »verweigern« das Paket " +"ohne Rückmeldung verschwinden lässt." + +#. Type: select +#. Description +#: ../templates:2002 +msgid "Default action for rulesets:" +msgstr "Standard-Aktion für Regelsätze:" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"What should the default action be when a packet does not match any of the " +"rules set up by Mason?" +msgstr "" +"Was soll die Standard-Aktion sein, wenn ein Paket auf keine der von Mason " +"eingerichteten Regeln passt?" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"Again, \"accept\" allows the packet through, \"reject\" drops the packet " +"with a reply, and \"deny\" silently drops the packet." +msgstr "" +"Wie oben lässt die Aktion »akzeptieren« das Paket durch, »ablehnen« lässt das " +"Paket mit einer Ablehnungsantwort verschwinden, während »verweigern« das " +"Paket ohne Rückmeldung verschwinden lässt." --- mason-1.0.0.orig/debian/po/templates.pot +++ mason-1.0.0/debian/po/templates.pot @@ -0,0 +1,70 @@ +# SOME DESCRIPTIVE TITLE. +# Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER +# This file is distributed under the same license as the PACKAGE package. +# FIRST AUTHOR , YEAR. +# +#, fuzzy +msgid "" +msgstr "" +"Project-Id-Version: PACKAGE VERSION\n" +"Report-Msgid-Bugs-To: thomas.scheffczyk@verwaltung.uni-mainz.de\n" +"POT-Creation-Date: 2007-03-14 10:38+0000\n" +"PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n" +"Last-Translator: FULL NAME \n" +"Language-Team: LANGUAGE \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=CHARSET\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: select +#. Choices +#. Type: select +#. Choices +#: ../templates:1001 ../templates:2001 +msgid "accept, reject, deny" +msgstr "" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "Default action for new firewall rules:" +msgstr "" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"When Mason detects a new kind of traffic and creates a rule for it, what " +"action should the rule take?" +msgstr "" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"The \"accept\" action will allow the packet through. \"Reject\" will stop " +"the packet with a rejection reply, while \"deny\" will drop the packet " +"silently." +msgstr "" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "Default action for rulesets:" +msgstr "" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"What should the default action be when a packet does not match any of the " +"rules set up by Mason?" +msgstr "" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"Again, \"accept\" allows the packet through, \"reject\" drops the packet " +"with a reply, and \"deny\" silently drops the packet." +msgstr "" --- mason-1.0.0.orig/debian/po/pt.po +++ mason-1.0.0/debian/po/pt.po @@ -0,0 +1,78 @@ +# Portuguese translation of mason's debconf messages. +# Copyright (C) 2007 +# This file is distributed under the same license as the mason package. +# Luísa Lourenço , YEAR. +# +msgid "" +msgstr "" +"Project-Id-Version: mason 1.0.0-6\n" +"Report-Msgid-Bugs-To: thomas.scheffczyk@verwaltung.uni-mainz.de\n" +"POT-Creation-Date: 2007-03-14 10:38+0000\n" +"PO-Revision-Date: 2007-03-20 13:45+0000\n" +"Last-Translator: Luísa Lourenço \n" +"Language-Team: Portuguese \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: select +#. Choices +#. Type: select +#. Choices +#: ../templates:1001 ../templates:2001 +msgid "accept, reject, deny" +msgstr "aceitar, rejeitar, recusar" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "Default action for new firewall rules:" +msgstr "Acção por omissão para as novas regras de firewall:" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"When Mason detects a new kind of traffic and creates a rule for it, what " +"action should the rule take?" +msgstr "" +"Quando o Mason detecta um novo tipo de tráfego e cria uma regra para esse " +"tráfego, qual a acção que a regra deve tomar?" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"The \"accept\" action will allow the packet through. \"Reject\" will stop " +"the packet with a rejection reply, while \"deny\" will drop the packet " +"silently." +msgstr "" +"A acção \"aceitar\" irá permitir o pacote continuar. \"Rejeitar\" irá parar " +"o pacote com uma resposta de rejeição, enquanto que \"recusar\" irá largar o " +"pacote silenciosamente." + +#. Type: select +#. Description +#: ../templates:2002 +msgid "Default action for rulesets:" +msgstr "Acção por omissão para o conjunto de regras:" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"What should the default action be when a packet does not match any of the " +"rules set up by Mason?" +msgstr "" +"Qual deve ser a acção por omissão quando um pacote não satisfaz nenhuma das " +"regras configuradas pelo Mason?" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"Again, \"accept\" allows the packet through, \"reject\" drops the packet " +"with a reply, and \"deny\" silently drops the packet." +msgstr "" +"De novo, \"aceitar\" permite o pacote continuar, \"rejeitar\" larga o pacote " +"com uma resposta, e \"recusar\" larga o pacote silenciosamente." --- mason-1.0.0.orig/debian/po/nl.po +++ mason-1.0.0/debian/po/nl.po @@ -0,0 +1,63 @@ +# SOME DESCRIPTIVE TITLE. +# Copyright (C) YEAR THE 'S COPYRIGHT HOLDER +# This file is distributed under the same license as the package. +# FIRST AUTHOR , YEAR. +# +msgid "" +msgstr "" +"Project-Id-Version: mason\n" +"Report-Msgid-Bugs-To: thomas.scheffczyk@verwaltung.uni-mainz.de\n" +"POT-Creation-Date: 2007-03-14 10:38+0000\n" +"PO-Revision-Date: 2007-10-26 20:16+0100\n" +"Last-Translator: Bart Cornelis \n" +"Language-Team: debian-l10n-dutch \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=utf-8\n" +"Content-Transfer-Encoding: 8bit\n" +"X-Poedit-Language: Dutch\n" + +#. Type: select +#. Choices +#. Type: select +#. Choices +#: ../templates:1001 +#: ../templates:2001 +msgid "accept, reject, deny" +msgstr "aanvaarden, verwerpen, niet toelaten" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "Default action for new firewall rules:" +msgstr "Standaardactie voor nieuwe firewall-regels:" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "When Mason detects a new kind of traffic and creates a rule for it, what action should the rule take?" +msgstr "Welke actie moeten regels die door Mason voor nieuwe soorten verkeer aangemaakt worden nemen?" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "The \"accept\" action will allow the packet through. \"Reject\" will stop the packet with a rejection reply, while \"deny\" will drop the packet silently." +msgstr "De 'aanvaarden'-actie laat het pakket door, 'verwerpen' houdt het pakket tegen en stuurt een overeenkomstig antwoord terug, terwijl 'niet toelaten' het pakket stilletjes weggooit." + +#. Type: select +#. Description +#: ../templates:2002 +msgid "Default action for rulesets:" +msgstr "Standaardactie voor regelsets:" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "What should the default action be when a packet does not match any of the rules set up by Mason?" +msgstr "Wat dient de standaardactie te zijn wanneer een pakket niet overeenkomt met een door Mason gedefinieerde regel?" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "Again, \"accept\" allows the packet through, \"reject\" drops the packet with a reply, and \"deny\" silently drops the packet." +msgstr "Ook hier betekent 'aanvaarden' dat het pakket doorgelaten wordt, 'verwerpen' dat het pakket tegengehouden wordt en een overeenkomstig antwoord teruggestuurd, en 'niet toelaten' dat het pakket stilletjes weggegooid wordt." + --- mason-1.0.0.orig/debian/po/es.po +++ mason-1.0.0/debian/po/es.po @@ -0,0 +1,96 @@ +# Mason translation to Spanish +# Copyright (C) 2008 +# This file is distributed under the same license as the mason package. +# Changes: +# - Initial translation +# Maria Germana Oliveira , 2007. +# Traductores, si no conoce el formato PO, merece la pena leer la +# documentación de gettext, especialmente las secciones dedicadas a este +# formato, por ejemplo ejecutando: +# info -n '(gettext)PO Files' +# info -n '(gettext)Header Entry' +# Equipo de traducción al español, por favor lean antes de traducir +# los siguientes documentos: +# - El proyecto de traducción de Debian al español +# http://www.debian.org/intl/spanish/coordinacion +# especialmente las notas de traducción en +# http://www.debian.org/intl/spanish/notas +# - La guía de traducción de po's de debconf: +# /usr/share/doc/po-debconf/README-trans +# o http://www.debian.org/intl/l10n/po-debconf/README-trans +# +# +msgid "" +msgstr "" +"Project-Id-Version: mason 1.0.0-8\n" +"Report-Msgid-Bugs-To: thomas.scheffczyk@verwaltung.uni-mainz.de\n" +"POT-Creation-Date: 2007-03-14 10:38+0000\n" +"PO-Revision-Date: 2008-02-28 18:49-0430\n" +"Last-Translator: Maria Germana Oliveira Blazetic \n" +"Language-Team: Spanish \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: select +#. Choices +#. Type: select +#. Choices +#: ../templates:1001 ../templates:2001 +msgid "accept, reject, deny" +msgstr "aceptar, rechazar, denegar" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "Default action for new firewall rules:" +msgstr "Acción predeterminada para las nuevas reglas del cortafuegos:" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"When Mason detects a new kind of traffic and creates a rule for it, what " +"action should the rule take?" +msgstr "" +"¿Qué acción debería tomarse en el caso de que Mason detecte un nuevo tipo de " +"tráfico y cree una regla para éste?" + +#. Type: select +#. Description +#: ../templates:1002 +msgid "" +"The \"accept\" action will allow the packet through. \"Reject\" will stop " +"the packet with a rejection reply, while \"deny\" will drop the packet " +"silently." +msgstr "" +"La acción «aceptar» dejará pasar el paquete, «rechazar» rechazará el paquete " +"con una respuesta de rechazo, mientras que «denegar» desechará el paquete " +"silenciosamente." + +#. Type: select +#. Description +#: ../templates:2002 +msgid "Default action for rulesets:" +msgstr "Acción predeterminada para el conjunto de reglas:" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"What should the default action be when a packet does not match any of the " +"rules set up by Mason?" +msgstr "" +"¿Cuál será la acción predeterminada cuando un paquete no cumpla con ninguna " +"de las reglas definidas por Mason?" + +#. Type: select +#. Description +#: ../templates:2002 +msgid "" +"Again, \"accept\" allows the packet through, \"reject\" drops the packet " +"with a reply, and \"deny\" silently drops the packet." +msgstr "" +"De nuevo, «aceptar» permite pasar al paquete, «rechazar» rechaza el paquete " +"con una respuesta, y «denegar» rechaza el paquete silenciosamente." --- mason-1.0.0.orig/debian/config +++ mason-1.0.0/debian/config @@ -0,0 +1,9 @@ +#!/bin/sh -e + +. /usr/share/debconf/confmodule + +db_input medium mason/newrulepolicy || true +db_go + +db_input medium mason/defaultpolicy || true +db_go --- mason-1.0.0.orig/debian/changelog +++ mason-1.0.0/debian/changelog @@ -1,3 +1,133 @@ +mason (1.0.0-9) unstable; urgency=low + + * Added spanish debconf template translation. (Thanks to Maria Germana Oliveira) + (closes: #469341) + * Fixed a small typo in the spanish translation (Thanks to Alvaro Herrera) + * Changed behaviour: When mason is purged, the init.d link will be removed now, too + * Added the '-n' switch to the call of 'iptables -L' when flushing chains + to avoid DNS calls when merely checking for the exisitence of a chain. + * Changed Standards-Version from 3.7.2 to 3.7.3; no changes required. + + -- Thomas Scheffczyk Tue, 25 Mar 2008 12:29:34 +0100 + +mason (1.0.0-8) unstable; urgency=low + + * Added dutch debconf template translation. (Thanks to cobaco (aka Bart Cornelis)) + (closes: #448932) + * Removed national encoding in changelog of 1.0.0-7 + * Changed property 'Build-Depends-Indep' to 'Build-Depends' in the rules file + + -- Thomas Scheffczyk Fri, 2 Nov 2007 10:53:00 +0100 + +mason (1.0.0-7) unstable; urgency=low + + * Added functionality again, to save the packet counters for filter rules + automatically when the rules are changed to allow long time statistics + (undo reverting changes done in 1.0.0-6) + * Added checks for running klogd and for a recently used logfile + (both necessary for mason to learn new rules) + * Added Portuguese debconf template translation. (Thanks to Luisa Lourenco) + (closes: #415631) + * Changed deprecated sort syntax used in masonlib ("sort +" to "sort -k ") + + -- Thomas Scheffczyk Fri, 23 Mar 2007 10:25:10 +0100 + +mason (1.0.0-6) unstable; urgency=low + + * revert undokumented changes to masonlib which prevent mason from going + into etch + + -- Christoph Martin Fri, 16 Mar 2007 09:43:10 +0100 + +mason (1.0.0-5) unstable; urgency=low + + * Changed the dependency from debconf to debconf|debconf-2.0 (closes #332022) + * Changed the po file for the danish translation from da_DK.po to da.po + (closes #349955) + * Added Swedish debconf template translation. (Thanks to Daniel Nylander) + (closes: #334799) + * integrate changes from NMU -4.1 + from Ana Beatriz Guerrero Lopez + * Added the compat file, bumped compat to 5 and remove the conffile since + it is not necessary anymore + * Bumped Standards-Version to 3.7.2, no changes required. + * Removed full stop "." character from the "Description" field. + * added German debconf template translation (closes: #411390) + + -- Christoph Martin Wed, 14 Mar 2007 11:31:08 +0100 + +mason (1.0.0-4) unstable; urgency=low + + * Added an update of the danish template translation (Thanks to Claus Hindsgaul) (closes: #319233) + + -- Thomas Scheffczyk Fri, 22 Jul 2005 07:46:17 +0200 + +mason (1.0.0-3) unstable; urgency=low + + * Incorporated NMU changes (Thanks to Lucas Wall) (closes: #250264, + #301321) + * fix postinst to correctly install startup links (closes: #222384) + * upgrade to policy 3.6.1.0 + * Added Vietnamese debconf template translation (Thanks to Clytie + Siddall) (closes: #312752) + + -- Thomas Scheffczyk Fri, 24 Jun 2005 11:41:10 +0200 + +mason (1.0.0-2.1) unstable; urgency=low + + * Non-maintainer upload + * Switched to po-debconf. (closes: #250264) + * Added Brazilian Portuguese debconf template translation. (closes: #301321) + * Added Czech debconf template translation. + * Added French debconf template translation. + * Added Norwegian BokmÃ¥l debconf template translation. + + -- Lucas Wall Tue, 12 Apr 2005 10:17:05 -0300 + +mason (1.0.0-2) unstable; urgency=low + + * fix masonlib to support iptables static in kernel + * fix init.d levels so that mason will be startet directly after + configuring the interfaces and will not be stopped on shutdown + + -- Thomas Scheffczyk Thu, 8 May 2003 13:57:43 +0200 + +mason (1.0.0-1) unstable; urgency=low + + * New maintainer upload (closes: #143724) + * Exit if another instance of mason-gui-text is running (closes: + #186599, #169221) + * fix duplicate text in README.Debian (closes: #171709) + * add Danish debconf template (closes: #174789) + + -- Thomas Scheffczyk Tue, 15 Apr 2003 14:49:58 +0200 + +mason (1.0.0-0.1) unstable; urgency=low + + * new upstream + + -- Christoph Martin Wed, 22 May 2002 17:46:26 +0200 + +mason (0.13.0.92-2) unstable; urgency=low + + * Added config questions for default policies to prevent boot-time + questions. (closes bug #50745) + * Changed maintainer address to jive with other packages. + * Fixed problem with *-ips files being created in current directory + instead of /var/lib/mason. + * Moved baserules from /var/lib/mason to /etc/mason.baserules (by request; + so config backups of /etc work properly). + * Fixed pristine source problem (it's uploaded now :-). + + -- Jeff Licquia Wed, 24 Nov 1999 23:55:13 -0600 + +mason (0.13.0.92-1) unstable; urgency=low + + * Newer upstream version. + * Real working package, this time. :-) + + -- Jeff Licquia Thu, 28 Oct 1999 16:30:12 -0500 + mason (0.13.0.92-1) unstable; urgency=low * Newer upstream version. @@ -11,7 +141,3 @@ -- Jeff Licquia Wed, 31 Mar 1999 21:49:35 -0600 -Local variables: -mode: debian-changelog -add-log-mailing-address: "jeff@luci.org" -End: --- mason-1.0.0.orig/debian/templates +++ mason-1.0.0/debian/templates @@ -0,0 +1,21 @@ +Template: mason/newrulepolicy +Type: select +_Choices: accept, reject, deny +Default: accept +_Description: Default action for new firewall rules: + When Mason detects a new kind of traffic and creates a rule for it, what + action should the rule take? + . + The "accept" action will allow the packet through. "Reject" will stop the + packet with a rejection reply, while "deny" will drop the packet silently. + +Template: mason/defaultpolicy +Type: select +_Choices: accept, reject, deny +Default: accept +_Description: Default action for rulesets: + What should the default action be when a packet does not match any of the + rules set up by Mason? + . + Again, "accept" allows the packet through, "reject" drops the packet with + a reply, and "deny" silently drops the packet. --- mason-1.0.0.orig/debian/compat +++ mason-1.0.0/debian/compat @@ -0,0 +1 @@ +5 --- mason-1.0.0.orig/Makefile +++ mason-1.0.0/Makefile @@ -90,7 +90,7 @@ docs: sgml2html --imagebuttons mason.sgml \ && sgml2txt -f mason.sgml \ - && makedoc mason.txt mason.pdb 'The Mason HOWTO' +# && makedoc mason.txt mason.pdb 'The Mason HOWTO' regress: @if ./regression-test ; then \ --- mason-1.0.0.orig/mason +++ mason-1.0.0/mason @@ -146,7 +146,7 @@ echo "export ${ONEIF}ADDR=\"0/0\" ${CMNT} ${CMNT}Use this if you want to match any address on $ONEIF." fi if [ "$DYNIFMODE" != "SPECIFICIP" ]; then echo -n "$CMNT $CMNT" ; fi - echo "export ${ONEIF}ADDR=\"\`ifconfig $ONEIF 2>/dev/null | awk '/inet addr/{print substr($2,6)}'\`$SINGLEMACHSPEC\" ${CMNT} ${CMNT}Use this if you want to match a single address on $ONEIF." + echo "export ${ONEIF}ADDR=\"\`LC_ALL=C ifconfig $ONEIF 2>/dev/null | awk '/inet addr/{print substr(\$2,6)}'\`$SINGLEMACHSPEC\" ${CMNT} ${CMNT}Use this if you want to match a single address on $ONEIF." if [ "$DYNIFMODE" != "SMALLESTRANGE" ]; then echo -n "$CMNT $CMNT" ; fi #FIXME - what if the file is empty? echo "export ${ONEIF}ADDR=\"$(encompassingnetworkof $(cat ${MASONDIR}${ONEIF}-ips | sort | uniq) || logfail $LINENO return encompassing network for $ONEIF)\" ${CMNT} ${CMNT}Use this if you want to match all addresses seen so far on $ONEIF." --- mason-1.0.0.orig/mason-decide +++ mason-1.0.0/mason-decide @@ -176,7 +176,7 @@ echo $ENH "${WARN}$0: Can't create temp file.${NORM}" else echo "$CURRLINE" >$TMPFILE - $EDITOR $TMPFILE <&10 + eval $EDITOR $TMPFILE <&10 CURRLINE=`cat $TMPFILE` rm -f $TMPFILE || : fi ;; --- mason-1.0.0.orig/mason-gui-text +++ mason-1.0.0/mason-gui-text @@ -4,6 +4,12 @@ #See top of Mason script for copyright and licensing information. #Last YYYY code used: 0019, use 0020 next +if [ "$$"x != "`/bin/pidof -x /usr/bin/mason-gui-text`"x ] +then + echo Another instance of $0 is running. Exiting .. + exit 1 +fi + CKPTMGT=" mgt: Ground0" ; #ckpt $CKPTMGT MASONDIR=${MASONDIR:-"/var/lib/mason/"} @@ -118,21 +124,41 @@ while [ ! "$EXITCONTROL" = "YES" ]; do clear - echo $ENH "${HEADER}---- ${BLUE}Mason${HEADER} firewall builder for Linux ----$NORM" - echo $ENH "${HEADER}---- Learning shell for Mason. ----$NORM" - echo $ENH "${HEADER}---- see http://www.pobox.com/~wstearns/mason/ for more info. ----$NORM" - echo $ENH "${HEADER}---- William Stearns ----$NORM" + echo "------------------------------------------------------------------" + echo $ENH "${HEADER}${BLUE}Mason${HEADER} firewall builder for Linux $NORM" + echo "------------------------------------------------------------------" + echo $ENH "${HEADER}---- Learning shell for Mason. $NORM" + echo $ENH "${HEADER}---- see http://www.pobox.com/~wstearns/mason/ for more info. $NORM" + echo $ENH "${HEADER}---- Originally from William Stearns $NORM" if [ -n "$MASONVER" ]; then - echo $ENH "${HEADER}(This is release $MASONVER)$NORM" + echo $ENH "${HEADER}---- This is release $MASONVER $NORM" fi + echo "------------------------------------------------------------------" + if [ -z "`/bin/pidof -x /sbin/klogd`" ]; then + echo "Warning: No instance of klogd (kernel log deamon) is running," + echo " mason will not be able to learn new rules." + echo "------------------------------------------------------------------" + fi + if [ ! -f "$PACKETLOGFILE" ]; then + echo "Warning: The syslog file $PACKETLOGFILE does not exist," + echo " mason will not be able to learn new rules." + echo "------------------------------------------------------------------" + else + if [ -z "` find $PACKETLOGFILE -cmin -60`" ]; then + echo "Warning: No messages was written to the syslog file $PACKETLOGFILE" + echo " the last hour, the file is probably not in use by a" + echo " syslog deamon. Mason will not be able to learn new rules." + echo "------------------------------------------------------------------" + fi + fi if [ -n "$MASONPID$MASONTAILPID" ]; then echo Mason is currently in learn mode. - echo + echo "------------------------------------------------------------------" echo $ENH ${KEY}EL${NORM}: ${KEY}E${NORM}nd ${KEY}L${NORM}earning. showstate 'Mason-gui-text: Main menu, learning in the background' else echo Mason IS NOT currently learning. - echo + echo "------------------------------------------------------------------" echo $ENH ${KEY}BL${NORM}: ${KEY}B${NORM}egin ${KEY}L${NORM}earning. showstate 'Mason-gui-text: Main menu, not learning' fi --- mason-1.0.0.orig/masonlib +++ mason-1.0.0/masonlib @@ -26,10 +26,10 @@ # || logfail $LINENO masonlib: YYYY #### the_command_that_was_supposed_to_run #Last YYYY code used: 0149, use 0150 next -if [ -f /usr/lib/samlib/samlib ]; then - . /usr/lib/samlib/samlib +if [ -f /var/lib/mason/samlib ]; then + . /var/lib/mason/samlib else - echo "/usr/lib/samlib/samlib is missing - please get it from" >/dev/stderr + echo "/var/lib/mason/samlib is missing - please get it from" >/dev/stderr echo "http://www.stearns.org/samlib/" >/dev/stderr echo "Exiting." >/dev/stderr exit 1 @@ -44,7 +44,7 @@ fi done -MASONVER="1.0.0, 5/12/2002" +MASONVER="1.0.0-9 - 2008-03-25" #------------------------------------------------------------------------- # addcounts procedure, adds the packet counts to the rules in a file. @@ -301,7 +301,8 @@ BLUE="\033[1;34m" PINK="\033[1;35m" TURQUOISE="\033[1;36m" - NORM="\033[1;37m" +# NORM="\033[1;37m" + NORM="`tput sgr0 2`" BRIGHT="\033[1;39m" else ENH="" @@ -448,7 +449,7 @@ [Nn][Oo]|[Nn][Oo][Nn][Ee]) ECHOCOMMAND="none" ;; *) if [ -f /proc/net/ip_fwchains ]; then ECHOCOMMAND="ipchains" elif [ -f /proc/net/ip_input ]; then ECHOCOMMAND="ipfwadm" - elif [ -n "`lsmod | grep '^ip_tables '`" ]; then ECHOCOMMAND="iptables" + elif [ -f /proc/net/ip_tables_names ]; then ECHOCOMMAND="iptables" else ECHOCOMMAND="ipchains" #Set default here fi ;; esac @@ -478,7 +479,7 @@ [Ii][Pp][Tt][Aa][Bb][Ll][Ee][Ss]) DOCOMMAND="iptables" #FIXME - how to reliably test for kernel iptables support - #if [ -z "`lsmod | grep '^ip_tables '`" ]; then + #if -z "`lsmod | grep '^ip_tables '`" ]; then # wrap ${WARN}WARNING! User has requested iptables, but it appears to be unavailable. Proceeding, but this is not likely to work.${NORM} >/dev/stderr # sleep 10 #fi @@ -716,7 +717,7 @@ exit 0 fi - if [ ! -f /proc/net/ip_fwchains ] && [ ! -f /proc/net/ip_input ] && [ -z "`lsmod | grep '^ip_tables '`" ]; then + if [ ! -f /proc/net/ip_fwchains ] && [ ! -f /proc/net/ip_input ] && [ ! -f /proc/net/ip_tables_names ]; then wrap ${WARN}This kernel does not support ipchains, ipfwadm or iptables!${NORM} >/dev/stderr #DOCOMMAND="none" #Should we force to none? fi @@ -1199,6 +1200,27 @@ esac #Case $1=action } #End of dorule +#------------------------------------------------------------------------- +#Save packet stats to a file for each chain +#------------------------------------------------------------------------- +savepacketstats () { + if [ "$SAVEPACKETSTATS"x = "yes"x ] + then + if [ "$DELETEPACKETSTATSOLDER" ] + then + find /var/log/mason/ -mtime +$DELETEPACKETSTATSOLDER -exec rm {} \; + fi + TABLES="nat filter" + for table in $TABLES + do + CHAINS=`$IPTABLESBIN -L -n -t $table | fgrep Chain | awk '{ print $2; }'` + for chain in $CHAINS + do + $IPTABLESBIN -n -x -v -t $table -L $chain > /var/log/mason/$table.$chain.`date +%Y.%m.%d.%H.%M.%S` + done + done + fi +} #------------------------------------------------------------------------- @@ -1206,6 +1228,7 @@ #------------------------------------------------------------------------- flushfirewall () { #SUDO checked CKPTFLUSHFIREWALL=" flushfirewall: Start" ; #ckpt $CKPTFLUSHFIREWALL + savepacketstats updatecounts echo -n Flushing... >/dev/stderr @@ -1229,7 +1252,7 @@ dorule f "$ONECHAIN" '' '' '' '' '' '' '' '' '' '' '' '' '' || logfail $LINENO masonlib: 0039/0041/0043/0048/0050/0052 done - if [ -f /proc/net/ip_fwchains ] || [ -n "`lsmod | grep '^ip_tables '`" ]; then + if [ -f /proc/net/ip_fwchains ] || [ -f /proc/net/ip_tables_names ]; then #Flush the nolog chains if they exist, create them if not. CKPTFLUSHFIREWALL=" flushfirewall: Create or flush nolog chains." ; #ckpt $CKPTFLUSHFIREWALL if [ -n "$NOLOGSUFFIX" ]; then @@ -1257,15 +1280,19 @@ if [ -f /proc/net/ip_fwchains ]; then #REMOVEME #if [ `$SUDO $IPCHAINSBIN -L -n | grep "^Chain $CHAINNAME" | wc -l` -gt 0 ]; then - if $SUDO $IPCHAINSBIN -L $CHAINNAME >/dev/null 2>/dev/null ; then #If chain exists + # 2008-03-25 - Scheffczyk: Added the '-n' switch to the call of 'iptables -L' + # to avoid DNS calls when merely checking for the exisitence of a chain. + if $SUDO $IPCHAINSBIN -n -L $CHAINNAME >/dev/null 2>/dev/null ; then #If chain exists $SUDO $IPCHAINSBIN -F $CHAINNAME >/dev/null 2>/dev/null || logfail $LINENO masonlib: 0044/0070/0089/0134 $IPCHAINSBIN -F $CHAINNAME else $SUDO $IPCHAINSBIN -N $CHAINNAME >/dev/null 2>/dev/null || logfail $LINENO masonlib: 0045/0071/0090 $IPCHAINSBIN -N $CHAINNAME fi - elif [ -n "`lsmod | grep '^ip_tables '`" ]; then + elif [ -f /proc/net/ip_tables_names ]; then #FIXME, check everywhere. #if iptables -L -n >/dev/null 2>/dev/null ; then echo iptables successful ; fi - if $SUDO $IPTABLESBIN -L $CHAINNAME >/dev/null 2>/dev/null ; then #If chain exists + # 2008-03-25 - Scheffczyk: Added the '-n' switch to the call of 'iptables -L' + # to avoid DNS calls when merely checking for the exisitence of a chain. + if $SUDO $IPTABLESBIN -n -L $CHAINNAME >/dev/null 2>/dev/null ; then #If chain exists $SUDO $IPTABLESBIN -F $CHAINNAME >/dev/null 2>/dev/null || logfail $LINENO masonlib: 0135 $IPTABLESBIN -F $CHAINNAME else $SUDO $IPTABLESBIN -N $CHAINNAME >/dev/null 2>/dev/null || logfail $LINENO masonlib: 0136 $IPTABLESBIN -N $CHAINNAME @@ -1901,7 +1928,7 @@ done else echo -n No Blockedhost blocks... ; fi - if [ -f /proc/net/ip_fwchains ] || [ -n "`lsmod | grep '^ip_tables '`" ]; then + if [ -f /proc/net/ip_fwchains ] || [ -f /proc/net/ip_tables_names ]; then CKPTRUNFIREWALL=" runfirewall: ipchains/iptables spoofblocks" ; #ckpt $CKPTRUNFIREWALL if [ "$SPOOFBLOCKS" = "YES" ]; then echo -n Spoof blocks... @@ -1913,7 +1940,7 @@ #$IPCHAINSBIN -I input -j NoSpoof || logfail $LINENO masonlib: YYYY 0072 dorule i input '' '' '' '' '' '' '' '' '' "NoSpoof" '' '' '' || logfail $LINENO masonlib: YYYY 0072 #In iptables, we have to check for spoofing on the forward chain as well. - if [ -n "`lsmod | grep '^ip_tables '`" ]; then + if [ -f /proc/net/ip_tables_names ]; then dorule i forward '' '' '' '' '' '' '' '' '' "NoSpoof" '' '' '' || logfail $LINENO masonlib: YYYY 0137 fi @@ -2313,7 +2340,9 @@ for SECTION in `seqfunc 0 $FILECOUNT` ; do if [ -f "$ONEFILE.$SECTION" ]; then if [ `grep '#\^' $ONEFILE.$SECTION | wc -l` -gt 0 ]; then - sort -t '^' +1 -n -r $ONEFILE.$SECTION >>$ONEFILE.new || logfail $LINENO masonlib: YYYY 0120 + # 2007-03-23 Scheffczyk + # Original line was: sort -t '^' +1 -n -r $ONEFILE.$SECTION >>$ONEFILE.new || logfail $LINENO masonlib: YYYY 0120 + sort -t '^' -k 1 -n -r $ONEFILE.$SECTION >>$ONEFILE.new || logfail $LINENO masonlib: YYYY 0120 else cat $ONEFILE.$SECTION >>$ONEFILE.new || logfail $LINENO masonlib: YYYY 0121 fi @@ -2350,12 +2379,14 @@ cp -pf $1 $1.bak || logfail $LINENO masonlib: YYYY 0125 #sort -t '#' +1 $1 | uniq >$1.sorted #This worked until we had mark values. CKPTUNIQRULEFILE=" uniqrulefile: main pipeline" ; #ckpt $CKPTUNIQRULEFILE + # 2007-03-23 Scheffczyk + # Original line was: sort -t '#' +1 | \ cat $1 | \ sed -e 's/^/!!! /' \ -e 's/^!!! \(.* -m \)\([0-9][0-9]*\)\( .*\)/\2 \1ZzMaRkZz\3/' | \ sort +1 | \ uniq -1 | \ - sort -t '#' +1 | \ + sort -t '#' -k 1 | \ uniq -1 | \ sed -e 's/^\([0-9][0-9]*\) \(.* -m \)ZzMaRkZz\( .*\)/\2\1\3/' \ -e 's/^!!! //' >$1.sorted || logfail $LINENO masonlib: YYYY 0126 --- mason-1.0.0.orig/masonrc +++ mason-1.0.0/masonrc @@ -154,6 +154,7 @@ #Use ANSI escape sequences to enhance display. Default YES. #Set this to no if your terminal doesn't support ANSI colors, etc. #USEANSI="YES" +USEANSI="NO" # The range of ports considered to be IRC server ports. # Default: 6666 to 6671 @@ -458,7 +459,7 @@ #Location of runtime changeable files and configuration. #Make sure you include the trailing slash. # Default: "/var/lib/mason/" -#MASONDIR="/var/lib/mason/" +MASONDIR="/var/lib/mason/" #This is the configuration file mason uses. It can be changed while #Mason is running as long as the SIGUSR1 signal is sent to Mason afterwards. --- mason-1.0.0.orig/samlib +++ mason-1.0.0/samlib @@ -617,7 +617,7 @@ requireutil ifconfig awk || exit 1 #Checks done on the following function: ipof () { #SUDO checked - ifconfig $1 2>/dev/null | awk '/inet addr/{print substr($2,6)}' + LC_ALL=C ifconfig $1 2>/dev/null | awk '/inet addr/{print substr($2,6)}' } #End of ipof if [ "$DOREGRESSIONTEST" = "YES" ]; then echo -n ipof...