Package Details: firehol 2:3.1.7-3

Git Clone URL: https://aur.archlinux.org/firehol.git (read-only, click to copy)
Package Base: firehol
Description: The iptables stateful packet filtering firewall builder.
Upstream URL: http://firehol.sourceforge.net
Keywords: firewall iptables
Licenses: GPL
Submitter: schuay
Maintainer: SanskritFritz
Last Packager: SanskritFritz
Votes: 35
Popularity: 0.000000
First Submitted: 2013-03-15 14:51 (UTC)
Last Updated: 2021-01-15 10:43 (UTC)

Latest Comments

« First ‹ Previous 1 2 3 4 5 6 Next › Last »

SanskritFritz commented on 2017-09-02 14:20 (UTC)

That is a very old problem, what version are you building?

JohnRobson commented on 2017-09-02 03:31 (UTC)

checking for ping6... no configure: error: cannot find required executable, bailing out ==> ERROR: A failure occurred in build(). Aborting... ==> ERROR: Makepkg was unable to build firehol. ping can handle ipv6 now

SanskritFritz commented on 2017-01-12 10:46 (UTC)

I don't know how to help you, sorry, it works here.

kinnil2ks commented on 2017-01-12 10:22 (UTC)

Yes. It's there, but still does not work. For me, the easiest and quickest solution was to replace in firehol binary: sed -i 's|$PROGRAM_DIR/$functions_file|/usr/lib/firehol/3.1.0/$functions_file|' /usr/bin/firehol I hope it get fixed for next update.

SanskritFritz commented on 2017-01-12 09:44 (UTC)

Check the PKGBUILD, you should see these lines in package(): # https://github.com/firehol/firehol/issues/178 rm "$pkgdir/usr/bin/"{vnetbuild,update-ipsets,fireqos,link-balancer,firehol} ln -s "/usr/lib/firehol/3.1.0/vnetbuild" "$pkgdir/usr/bin/vnetbuild" ln -s "/usr/lib/firehol/3.1.0/update-ipsets" "$pkgdir/usr/bin/update-ipsets" ln -s "/usr/lib/firehol/3.1.0/fireqos" "$pkgdir/usr/bin/fireqos" ln -s "/usr/lib/firehol/3.1.0/link-balancer" "$pkgdir/usr/bin/link-balancer" ln -s "/usr/lib/firehol/3.1.0/firehol" "$pkgdir/usr/bin/firehol"

kinnil2ks commented on 2017-01-12 09:35 (UTC) (edited on 2017-01-12 09:35 (UTC) by kinnil2ks)

@SanskritFritz Yes, downloaded just yesterday. That's the bug, yes. Using apacman, if that matters.

SanskritFritz commented on 2017-01-12 08:48 (UTC)

@stenaus Are you sure you are using version 2:3.1.0-2? I suspect you've hit this bug: https://github.com/firehol/firehol/issues/178 There is a workaround for this in pkgrel=2.

kinnil2ks commented on 2017-01-12 08:14 (UTC)

Not sure if this is the right place, but does anyone else have a problem with this package? PROGRAM_DIR points every way to /usr/bin/ which breaks Firehol 3.1.0 startup, because install.config and functions.common files exists in /usr/lib/firehol/3.1.0/ but not in /usr/bin Also, FIREHOL_OVERRIDE_PROGRAM_DIR does not work (neither in firehol.defaults nor firehol-defaults.conf) because config file is loaded afterwards not in the beginning.

SanskritFritz commented on 2017-01-08 20:19 (UTC)

OK, I'm not good at this stuff, so maybe I'm completely missing the point. I think the hash in the PKGBUILD should be generated at package creation, so the user can be sure he has downloaded the same file the package creator did. Generating the hash on the downloaded file and comparing it to the hash downloaded from the same site is rather pointless in my opinion.

utsi commented on 2017-01-08 10:26 (UTC) (edited on 2017-01-08 10:29 (UTC) by utsi)

SanskritFritz, just throwing in my 2c, I think what djmattyg007 is trying to say is that instead of using md5sums in the PKGBUILD, you should use SHA1. Though I would argue that you should use SHA512, but that is another matter of its own. Of course you would not download the hash from the website, but you would generate it yourself and verify that it matches the website one, though if the tar was compromised so would the hash. What hash the PKGBUILD uses does not really matter if you would include PGP signature verification of the source, since the MD5 checksum would then be effectively only a checksum for a successful download and PGP would be used for the source integrity check. Edit: And thanks for being the package maintainer :)