1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
59
60
61
62
63
|
#!/bin/sh
set -e
# debconf
. /usr/share/debconf/confmodule
db_version 2.0
CONFFILE="/etc/ufw/ufw.conf"
USER_PATH="/etc/ufw"
TEMPLATE_PATH="/usr/share/ufw"
has_existing() {
if [ ! -e "$USER_PATH/user.rules" ]; then
return 1
fi
orig=`md5sum $TEMPLATE_PATH/user.rules | cut -d ' ' -f 1`
orig_md5file="$TEMPLATE_PATH/user.rules.md5sum"
user=`md5sum $USER_PATH/user.rules | cut -d ' ' -f 1`
orig6=`md5sum $TEMPLATE_PATH/user6.rules | cut -d ' ' -f 1`
orig6_md5file="$TEMPLATE_PATH/user6.rules.md5sum"
user6=`md5sum $USER_PATH/user6.rules | cut -d ' ' -f 1`
if [ "$orig" != "$user" ] && ! grep -q "$user" "$orig_md5file" 2>/dev/null ; then
return 0
elif [ "$orig6" != "$user6" ] && ! grep -q "$user6" "$orig6_md5file" 2>/dev/null ; then
return 0
else
return 1
fi
}
# If ufw is enabled (eg during an upgrade), then update debconf
if [ -f "$CONFFILE" ]; then
if egrep -q '^ENABLED=yes$' "$CONFFILE" ; then
db_set ufw/enable true || true
else
db_set ufw/enable false || true
fi
fi
db_get ufw/enable
previous="$RET"
db_input medium ufw/enable || true
db_go
db_get ufw/enable
# only use existing_configuration/allow_known_ports if the user changed from
# false to true
if [ ! -z "$RET" ] && [ "$previous" = "false" ] && [ "$RET" = true ]; then
if has_existing ; then
# Can't reliably configure ports in an existing configuration
db_text low ufw/existing_configuration || true
db_go
else
db_input medium ufw/allow_known_ports || true
db_go
db_input low ufw/allow_custom_ports || true
db_go
fi
fi
|
