

Debian bug report logs - #907
inetd.conf upgrades may disable services

Package: netbase ; Reported by: rdr@legislate.com (Raul Miller); 27 days
old.
-----------------------------------------------------------------------

Message received at debian-bugs:


From legislate.com!rdr Sat May 27 15:28:31 1995
Return-Path: <rdr@legislate.com>
Received: from pixar.com by mongo.pixar.com with smtp
        (Smail3.1.28.1 #15) id m0sFULP-0005kIC; Sat, 27 May 95 15:28 PDT
Received: from hydra.legislate.com ([192.77.155.4]) by pixar.com with 
SMTP id AA12049
  (5.67b/IDA-1.5 for debian-bugs-pipe@mongo.pixar.com); Sat, 27 May 1995 
15:27:05 -0700
Received: by hydra.legislate.com
        id m0sFQby-0004i6C
        (Debian /\oo/\ Smail3.1.29.1 #29.31); Sat, 27 May 95 18:29 GMT
Message-Id: <m0sFQby-0004i6C@hydra.legislate.com>
Date: Sat, 27 May 95 18:29 GMT
From: rdr@legislate.com (Raul Miller)
To: iwj10@cus.cam.ac.uk, debian-bugs@Pixar.com
Cc: debian-bugs@Pixar.com
In-Reply-To: <m0sFSuD-0000XQZ@chiark.al.cl.cam.ac.uk> 
(iwj10@cus.cam.ac.uk)
Subject: Re: Bug#907: inetd.conf upgrades may disable services

Ian Jackson: 
   How about a third option at this stage: shell out in the
   appropriate directory, telling the user which is the new and which
   the old file, and letting them sort it out using `mv', `rm', `ed',
   `diff' or whatever they prefer ?

That should work.  You'd probably want to emit a brief paragraph
reminding the sysadmin of some basic assumptions about what they
should be doing and what's ok to do.  And/or, perhaps, include a
reference to some file giving more extensive documentation on the
process.

-- 
Raul Miller
-----------------------------------------------------------------------
Acknowledgement sent to rdr@legislate.com (Raul Miller) :
Extra info received and forwarded. Full text available.
-----------------------------------------------------------------------
Information forwarded to debian-devel@pixar.com :
Bug#907 ; Package netbase . Full text available.
-----------------------------------------------------------------------

Message received at debian-bugs:


From cus.cam.ac.uk!iwj10 Sat May 27 14:27:36 1995
Return-Path: <iwj10@cus.cam.ac.uk>
Received: from pixar.com by mongo.pixar.com with smtp
        (Smail3.1.28.1 #15) id m0sFTOS-0007jkC; Sat, 27 May 95 14:27 PDT
Received: from bootes.cus.cam.ac.uk by pixar.com with SMTP id AA10674
  (5.67b/IDA-1.5 for debian-bugs-pipe@mongo.pixar.com); Sat, 27 May 1995 
14:26:10 -0700
Received: by bootes.cus.cam.ac.uk 
        (Smail-3.1.29.0 #36) id m0sFTOA-000BzgC; Sat, 27 May 95 22:27 
BST
Received: by chiark
        id <m0sFSuD-0000XQZ@chiark.al.cl.cam.ac.uk>
        (Debian /\oo/\ Smail3.1.29.1 #29.31); Sat, 27 May 95 21:56 BST
Message-Id: <m0sFSuD-0000XQZ@chiark.al.cl.cam.ac.uk>
Date: Sat, 27 May 95 21:56 BST
From: iwj10@cus.cam.ac.uk (Ian Jackson)
To: debian-bugs@Pixar.com
Subject: Re: Bug#907: inetd.conf upgrades may disable services
In-Reply-To: <m0sFMfV-0004i6C@hydra.legislate.com>
References: <m0sF7iu-0000XfZ@chiark.al.cl.cam.ac.uk>
        <m0sFMfV-0004i6C@hydra.legislate.com>

Raul Miller writes ("Re: Bug#907: inetd.conf upgrades may disable 
services"):
> Well, like I said earlier, I installed something like 200 packages in
> that run.  I really can't say for sure what I replied.  Clearly,
> however, whatever I replied was an affirmative.

IC.

> More generally, I intended to bring my installation up to a certain
> level, and I proceeded with the expectation of winding up with a "more
> default" system.
> 
> But you seem to understand this.

Err, yes.  I agree with you that this behaviour is bad for inetd.conf
(especially considering the fact that many packages actually modify
inetd.conf, so the user may not even know that it has been modified).

> Perhaps, what would be nice, is an option for the sysadmin to look at
> config file diffs (with ${PAGER-more}) before decidiing yes or no to
> installing the new config file.  Also, when deciding yes (or no) it
> would be nice to be able to follow up with a quick trip to
> ${EDITOR-ed}.  This business of blind configuration isn't really all
> that great.

How about a third option at this stage: shell out in the appropriate
directory, telling the user which is the new and which the old file,
and letting them sort it out using `mv', `rm', `ed', `diff' or
whatever they prefer ?

If the session dies at this point the package will be in a bit of a
mess, but nothing that a reinstall shouldn't sort out.

Ian.
-----------------------------------------------------------------------
Acknowledgement sent to iwj10@cus.cam.ac.uk (Ian Jackson) :
Extra info received and forwarded. Full text available.
-----------------------------------------------------------------------
Information forwarded to debian-devel@pixar.com :
Bug#907 ; Package netbase . Full text available.
-----------------------------------------------------------------------

Message received at debian-bugs:


From legislate.com!rdr Sat May 27 11:16:09 1995
Return-Path: <rdr@legislate.com>
Received: from pixar.com by mongo.pixar.com with smtp
        (Smail3.1.28.1 #15) id m0sFQPB-00064uC; Sat, 27 May 95 11:16 PDT
Received: from hydra.legislate.com ([192.77.155.4]) by pixar.com with 
SMTP id AA06669
  (5.67b/IDA-1.5 for debian-bugs-pipe@mongo.pixar.com); Sat, 27 May 1995 
11:14:41 -0700
Received: by hydra.legislate.com
        id m0sFMfV-0004i6C
        (Debian /\oo/\ Smail3.1.29.1 #29.31); Sat, 27 May 95 14:16 GMT
Message-Id: <m0sFMfV-0004i6C@hydra.legislate.com>
Date: Sat, 27 May 95 14:16 GMT
From: rdr@legislate.com (Raul Miller)
To: iwj10@cus.cam.ac.uk, debian-bugs@Pixar.com
In-Reply-To: <m0sF7iu-0000XfZ@chiark.al.cl.cam.ac.uk> 
(iwj10@cus.cam.ac.uk)
Subject: Re: Bug#907: inetd.conf upgrades may disable services

Raul Miller
   > Perhaps the best thing to do is mail root a list of user editted
   > config files which have been changed during a dpkg installation.  
This
   > would be a checklist for post-installation admin work.

Ian Jackson:
   Did you not get a message from dpkg asking you whether you wanted to
   replace your inetd.conf ?  What did you reply ?

Well, like I said earlier, I installed something like 200 packages in
that run.  I really can't say for sure what I replied.  Clearly,
however, whatever I replied was an affirmative.

More generally, I intended to bring my installation up to a certain
level, and I proceeded with the expectation of winding up with a "more
default" system.

But you seem to understand this.

Perhaps, what would be nice, is an option for the sysadmin to look at
config file diffs (with ${PAGER-more}) before decidiing yes or no to
installing the new config file.  Also, when deciding yes (or no) it
would be nice to be able to follow up with a quick trip to
${EDITOR-ed}.  This business of blind configuration isn't really all
that great.

-- 
Raul D. Miller
-----------------------------------------------------------------------
Acknowledgement sent to rdr@legislate.com (Raul Miller) :
Extra info received and forwarded. Full text available.
-----------------------------------------------------------------------
Information forwarded to debian-devel@pixar.com :
Bug#907 ; Package netbase . Full text available.
-----------------------------------------------------------------------

Message received at debian-bugs:


From cus.cam.ac.uk!iwj10 Sat May 27 10:54:32 1995
Return-Path: <iwj10@cus.cam.ac.uk>
Received: from pixar.com by mongo.pixar.com with smtp
        (Smail3.1.28.1 #15) id m0sFQ4G-00064uC; Sat, 27 May 95 10:54 PDT
Received: from bootes.cus.cam.ac.uk by pixar.com with SMTP id AA06173
  (5.67b/IDA-1.5 for debian-bugs-pipe@mongo.pixar.com); Sat, 27 May 1995 
10:53:07 -0700
Received: by bootes.cus.cam.ac.uk 
        (Smail-3.1.29.0 #36) id m0sFQ42-000BzvC; Sat, 27 May 95 18:54 
BST
Received: by chiark
        id <m0sF7iu-0000XfZ@chiark.al.cl.cam.ac.uk>
        (Debian /\oo/\ Smail3.1.29.1 #29.31); Fri, 26 May 95 23:19 BST
Message-Id: <m0sF7iu-0000XfZ@chiark.al.cl.cam.ac.uk>
Date: Fri, 26 May 95 23:19 BST
From: iwj10@cus.cam.ac.uk (Ian Jackson)
To: debian-bugs@pixar.com
Subject: Re: Bug#907: inetd.conf upgrades may disable services

Raul Miller writes ("Bug#907: inetd.conf upgrades may disable 
services"):
> [...]
> However, I feel that inetd.conf is a special case.

I agree.  It should be updated much more carefully.  I'd suggest
taking the standard `sophisticated package with much user-edited stuff
in the config files' approach: don't include a copy of /etc/inetd.conf
with the package.  Instead, generate one in the postinst.

If you discover you've made a mistake you have to write a piece of
code to fix the mistake without messing the rest of the file up.

If I can do this for Smail's config files (which are more complicated
than an inetd.conf) the netbase maintainer should be able to do it for
inetd :-).

Certainly the packages I maintain expect to be able to use inetd.conf
to en- and disable services.  (For example, Smail disables mail
service while it is being upgraded, and (re)enables it in the
postinst.)

> [...]
> Perhaps the best thing to do is mail root a list of user editted
> config files which have been changed during a dpkg installation.  This
> would be a checklist for post-installation admin work.

Did you not get a message from dpkg asking you whether you wanted to
replace your inetd.conf ?  What did you reply ?

This is what is supposed to happen if you have edited a file you
install a version with a modified config file.

Ian.
-----------------------------------------------------------------------
Acknowledgement sent to iwj10@cus.cam.ac.uk (Ian Jackson) :
Extra info received and forwarded. Full text available.
-----------------------------------------------------------------------
Information forwarded to debian-devel@pixar.com :
Bug#907 ; Package netbase . Full text available.
-----------------------------------------------------------------------

Message received at debian-bugs:


From legislate.com!rdr Thu May 25 11:35:59 1995
Return-Path: <rdr@legislate.com>
Received: from pixar.com by mongo.pixar.com with smtp
        (Smail3.1.28.1 #15) id m0sEhlD-0005lbC; Thu, 25 May 95 11:35 PDT
Received: from hydra.legislate.com ([192.77.155.4]) by pixar.com with 
SMTP id AA24853
  (5.67b/IDA-1.5 for debian-bugs-pipe@mongo.pixar.com); Thu, 25 May 1995 
11:34:23 -0700
Received: by hydra.legislate.com
        id m0sEe1T-0004iWC
        (Debian /\oo/\ Smail3.1.29.1 #29.31); Thu, 25 May 95 14:36 GMT
Message-Id: <m0sEe1T-0004iWC@hydra.legislate.com>
Date: Thu, 25 May 95 14:36 GMT
From: rdr@legislate.com (Raul Miller)
To: tobias@server.et-inf.fho-emden.de
Cc: debian-bugs@pixar.com
In-Reply-To: <9505242019.AA07884@server.et-inf.fho-emden.de> 
(tobias@server.et-inf.fho-emden.de)
Subject: Re: Bug#907: inetd.conf upgrades may disable services

Peter Tobias:
   Hmm.. netbase does not enable or disable services, dpkg should ask
   if you want to use your old inetd.conf or the default inetd.conf
   file from the netbase package. That's all. If you use the default
   inetd.conf file from the netbase package you should always have
   look at it.

Sure, except I just re-installed a whole mess of packages (like 200 or
so).  I can deal with things changing and with changing various config
files to more closely approach ideal behavior.

However, I feel that inetd.conf is a special case.

(a) it bears as strongly on system security as does /etc/passwd.
(b) it controls many services (such as mail delivery) which, while not
interactive, can still be urgently important.
(c) the current handling of this file by debian doesn't preserve
incremental changes by the sysadmin across updates.

My point is that this one particular config file is worthy of special
treatment.

No particular harm was done in my case.  However, I've been on plenty
of systems (sun, hp, ...) which have had mail accidentally disabled
for one reason or another.  Frequently, the sysadmin didn't notice
until I reported the problem (this could take days).  With debian,
we're shooting for a broad installation base -- and I suspect that
this sort of situation will bite a lot of people unless we make some
sort of provision for it.

Perhaps the best thing to do is mail root a list of user editted
config files which have been changed during a dpkg installation.  This
would be a checklist for post-installation admin work.

?

However, I'm not sure this is an adequate solution for mail handling.

-- 
Raul Miller
-----------------------------------------------------------------------
Acknowledgement sent to rdr@legislate.com (Raul Miller) :
Extra info received and forwarded. Full text available.
-----------------------------------------------------------------------
Information forwarded to debian-devel@pixar.com :
Bug#907 ; Package netbase . Full text available.
-----------------------------------------------------------------------

Message received at debian-bugs:


From server.et-inf.fho-emden.de!tobias Wed May 24 13:26:45 1995
Return-Path: <tobias@server.et-inf.fho-emden.de>
Received: from pixar.com by mongo.pixar.com with smtp
        (Smail3.1.28.1 #15) id m0sEN0u-0005kIC; Wed, 24 May 95 13:26 PDT
Received: from server.et-inf.fho-emden.de by pixar.com with SMTP id 
AA18905
  (5.67b/IDA-1.5 for debian-bugs-pipe@mongo.pixar.com); Wed, 24 May 1995 
13:25:19 -0700
Received: by server.et-inf.fho-emden.de (5.65/DEC-Ultrix/4.3)
        id AA07884; Wed, 24 May 1995 22:19:14 +0200
From: tobias@server.et-inf.fho-emden.de (Peter Tobias)
Message-Id: <9505242019.AA07884@server.et-inf.fho-emden.de>
Subject: Re: Bug#907: inetd.conf upgrades may disable services
To: rdr@legislate.com, debian-bugs@pixar.com
Date: Wed, 24 May 1995 22:19:14 +0000 (GMT-1:00)
In-Reply-To: <m0sEGMR-0004iXC@hydra.legislate.com> from "Raul Miller" at 
May 24, 95 01:20:00 pm
X-Mailer: ELM [version 2.4 PL17]
Mime-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 8bit
Content-Length: 1061      

Raul Miller wrote:
> Package: netbase
> Version: 1.11-1
> 
> I just had my mail delivery service turned off for a number of hours
> because I upgraded netbase.  In my opinion, the interactive portion of
> this upgrade should include some sort of warning as to what services
> would be enabled/disabled by this upgrade [e.g. run diff on the
> various version of the config files and reduce the results to
> something meaningful to the typical user -- or if that's too hard,
> just give the user the option of looking at the raw diffs].

Hmm.. netbase does not enable or disable services, dpkg should ask
if you want to use your old inetd.conf or the default inetd.conf file
from the netbase package. That's all. If you use the default inetd.conf
file from the netbase package you should always have look at it.


Peter

-- 
 Peter Tobias                                EMail:
 Fachhochschule Ostfriesland                 tobias@et-inf.fho-emden.de
 Fachbereich Elektrotechnik und Informatik   tobias@perseus.fho-emden.de
 Constantiaplatz 4, 26723 Emden, Germany
-----------------------------------------------------------------------
Acknowledgement sent to tobias@server.et-inf.fho-emden.de (Peter Tobias)
:
Extra info received and forwarded. Full text available.
-----------------------------------------------------------------------
Information forwarded to debian-devel@pixar.com :
Bug#907 ; Package netbase . Full text available.
-----------------------------------------------------------------------

Message received at debian-bugs:


From legislate.com!rdr Wed May 24 10:18:05 1995
Return-Path: <rdr@legislate.com>
Received: from pixar.com by mongo.pixar.com with smtp
        (Smail3.1.28.1 #15) id m0sEK4K-0006AAC; Wed, 24 May 95 10:18 PDT
Received: from hydra.legislate.com ([192.77.155.4]) by pixar.com with 
SMTP id AA10743
  (5.67b/IDA-1.5 for debian-bugs-pipe@mongo.pixar.com); Wed, 24 May 1995 
10:16:39 -0700
Received: by hydra.legislate.com
        id m0sEGMR-0004iXC
        (Debian /\oo/\ Smail3.1.29.1 #29.31); Wed, 24 May 95 13:20 GMT
Message-Id: <m0sEGMR-0004iXC@hydra.legislate.com>
Date: Wed, 24 May 95 13:20 GMT
From: rdr@legislate.com (Raul Miller)
To: debian-bugs@pixar.com
Subject: inetd.conf upgrades may disable services

Package: netbase
Version: 1.11-1

I just had my mail delivery service turned off for a number of hours
because I upgraded netbase.  In my opinion, the interactive portion of
this upgrade should include some sort of warning as to what services
would be enabled/disabled by this upgrade [e.g. run diff on the
various version of the config files and reduce the results to
something meaningful to the typical user -- or if that's too hard,
just give the user the option of looking at the raw diffs].

-- 
Raul D. Miller
-----------------------------------------------------------------------
Acknowledgement sent to rdr@legislate.com (Raul Miller) :
New bug report received and forwarded. Full text available.
-----------------------------------------------------------------------
Report forwarded to debian-devel@pixar.com :
Bug#907 ; Package netbase . Full text available.
-----------------------------------------------------------------------
Ian Jackson / iwj10@thor.cam.ac.uk , with the debian-bugs tracking
mechanism
This page last modified 06:43:02 GMT Wed 21 Jun