Merge branch 'master' of ssh://git.evolix.org/git/evolinux/minifirewall

2010-09-13 13:49:31 +02:00 · 2010-09-13 13:49:31 +02:00 · 910c3f7063
parent 1cdb7af52c 530ed78833
commit 910c3f7063
2 changed files with 16 additions and 2 deletions
--- a/firewall.rc
+++ b/firewall.rc
@ -49,7 +49,7 @@ DNSSERVEURS='85.31.205.33 78.153.240.29'
 #     du minifirewall en crontab
 # (Attention, si un proxy HTTP est installe en local
 #  mettre 0.0.0.0/0)
-HTTPSITES='security.debian.org pub.evolix.net volatile.debian.org'
+HTTPSITES='security.debian.org pub.evolix.net volatile.debian.org mirror.evolix.org'

 # HTTPS
 # /!\ Possibilite d'utiliser des noms de domaines
--- a/16
+++ b/16
@ -91,7 +91,21 @@ $IPT -A LOG_ACCEPT -j LOG  --log-prefix '[IPTABLES ACCEPT] : '
 $IPT -A LOG_ACCEPT -j ACCEPT

 # Configuration
-test -f /etc/firewall.rc && . /etc/firewall.rc
+configfile="/etc/firewall.rc"
+
+if ! test -f $configfile; then
+	echo "$configfile does not exist" >&2
+	exit 1
+fi
+
+tmpfile=`mktemp`
+. $configfile 2>$tmpfile >&2
+if [ -s $tmpfile ]; then
+	echo "$configfile returns standard or error output (see below). Stopping."
+	cat $tmpfile
+	exit 1
+fi
+rm $tmpfile

 # trusted ip addresses
 $IPT -N ONLYTRUSTED