[ubuntu-hardened] ufw package integration

Nicolas Valcárcel nvalcarcel at ubuntu.com
Thu Sep 4 06:41:28 BST 2008

On Wed, 2008-09-03 at 17:33 -0700, Steve Langasek wrote:
> How does this design prevent
> leaving ports open when the package that they legitimately correspond
> to is
> no longer installed?

I think we can (if it's not already preventing it) add a command
on .postrm that disables it on ufw. At the end this files are just for
declaring profiles, not enabling or open any port, they just describe a
service ports so the user doesn't need to care about them just enable
that service on ufw. So we don't need to care about those files opening
any port, but for disabling them on ufw after removing.

aka nxvl
Key fingerprint = BCE4 27A0 D03E 55DE DA2D  BE06 891D 8DEE 6545 97FE
gpg --keyserver keyserver.ubuntu.com --recv-keys 654597FE

More information about the ubuntu-hardened mailing list