Code Monkey home page Code Monkey logo

Comments (4)

jessuppi avatar jessuppi commented on August 22, 2024

@Bronislawsky Please kindly add this to the existing Issue on this topic instead:

#36

If you can use more descriptive titles when creating Issues, it would also help the community understand a bit more about what you're reporting. Thanks!

from slickstack.

Bronislawsky avatar Bronislawsky commented on August 22, 2024

Alright, Issue was 'closed' that's why I created new one..
I am pretty git new, I will pay attention.

Precision in this issue, no matter if you add custom rules or not
as soon as ss's user.rules is copied over /etc/ufw/user(6).rules
it will not survive a 'ufw reload' because user.rules is not well formatted.

from slickstack.

Bronislawsky avatar Bronislawsky commented on August 22, 2024

`typo in ss-install.txt
ufw allow @SSH_PORT
should be
ufw allow $SSH_PORT

########### This block generates user.rules and user6.rules ############
ufw default deny incoming
ufw default allow outgoing
ufw allow $SSH_PORT
ufw allow 80
ufw allow 443
ufw allow 6379
#######################################################################

I think, these lines
#################################################################################
wget -O /tmp/user.rules http://mirrors.slickstack.io/ufw-firewall/user-rules.txt

if [[ -z "$SSH_PORT" ]]; then
sed -i "s/@SSH_PORT/6969/g" /tmp/user.rules
else
sed -i "s/@SSH_PORT/${SSH_PORT}/g" /tmp/user.rules
fi

cp /tmp/user.rules /etc/ufw/user.rules
chown root:root /etc/ufw/user.rules
chmod 0664 /etc/ufw/user.rules
##################################################################################
is useless because it overwrite the previously generated user(6).rules
and if for some reson 'ufw reload' is executed, you get jailed out from ipv4.
ipv6 rules will persiste because it hasn't been override with the faulty
cp /tmp/user.rules /etc/ufw/user.rules

IMHO
wget -O /tmp/user.rules http://mirrors.slickstack.io/ufw-firewall/user-rules.txt
should not happend at all.`

from slickstack.

jessuppi avatar jessuppi commented on August 22, 2024

Locking this thread as a similar Issue already exists, please add comments there, thanks ~

from slickstack.

Related Issues (20)

Recommend Projects

  • React photo React

    A declarative, efficient, and flexible JavaScript library for building user interfaces.

  • Vue.js photo Vue.js

    🖖 Vue.js is a progressive, incrementally-adoptable JavaScript framework for building UI on the web.

  • Typescript photo Typescript

    TypeScript is a superset of JavaScript that compiles to clean JavaScript output.

  • TensorFlow photo TensorFlow

    An Open Source Machine Learning Framework for Everyone

  • Django photo Django

    The Web framework for perfectionists with deadlines.

  • D3 photo D3

    Bring data to life with SVG, Canvas and HTML. 📊📈🎉

Recommend Topics

  • javascript

    JavaScript (JS) is a lightweight interpreted programming language with first-class functions.

  • web

    Some thing interesting about web. New door for the world.

  • server

    A server is a program made to process requests and deliver data to clients.

  • Machine learning

    Machine learning is a way of modeling and interpreting data that allows a piece of software to respond intelligently.

  • Game

    Some thing interesting about game, make everyone happy.

Recommend Org

  • Facebook photo Facebook

    We are working to build community through open source technology. NB: members must have two-factor auth.

  • Microsoft photo Microsoft

    Open source projects and samples from Microsoft.

  • Google photo Google

    Google ❤️ Open Source for everyone.

  • D3 photo D3

    Data-Driven Documents codes.