--- ferm-2.2.orig/debian/README.Debian +++ ferm-2.2/debian/README.Debian @@ -0,0 +1,33 @@ +The ferm debian package +======================= + +By default, ferm's configuration file is /etc/ferm/ferm.conf. The +directory /etc/ferm is reserved for includes you might want to write. + +The init script itself is configured with /etc/default/ferm, which +contains several variables. Most important for now is "ENABLED=yes" +if you want ferm to be run automatically on boot. + +Setting "FAST=yes" is, well, faster - but you shouldn't enable it on +Debian Sarge because it ships iptables 1.2, which is know to be too +bugged for ferm's fast mode. + +If you want to use ferm on sarge you have use iptables 1.3 or remove the 1.3 +dependency and set FAST=no in /etc/default/ferm (the latter is done for the +packages on backports.org). + +The cache ("CACHE=yes", enabled by default) speeds things up, too, +because ferm will only be run when you modify its configuration, but +this also means that ferm's rollback-on-error isn't assisting you. +Also note that the init script doesn't notice when you change an +include file. To work around that, touch /etc/ferm/ferm.conf. + +I recommend you use ferm's so-called "interactive mode" while you +develop firewall rules on remote machines. In this mode, ferm applies +the new firewall rules and asks you for confirmation. If you don't +confirm within 30 seconds, ferm reverts to the previous rule set. +Run: + + ferm --interactive /etc/ferm/ferm.conf + + -- Max Kellermann --- ferm-2.2.orig/debian/changelog +++ ferm-2.2/debian/changelog @@ -0,0 +1,504 @@ +ferm (2.2-3.2) unstable; urgency=medium + + * Non-maintainer upload. + * Fix breakage introduced by new systemd unit. + - Do not stop firewall on shutdown. + - Start after /var/cache is mounted and after network. + + -- Felipe Sateler Tue, 29 Mar 2016 07:54:15 -0300 + +ferm (2.2-3.1) unstable; urgency=medium + + * Non-maintainer upload. + * Add native systemd unit, to break ordering cycle. (Closes: #796611) + + -- Felipe Sateler Mon, 28 Mar 2016 20:36:07 -0300 + +ferm (2.2-3) unstable; urgency=medium + + * [54e6ad3] Honor dpkg-statoverride for /etc&/ferm (Closes: #752686) + * [93d9656] Move manpage installation to debian/ferm.manpages + * [40ff883] Remove brace expansion to make lintian happy + * [2799fe7] Move to dh9 + * [22429c9] Add some docs + * [6db22f7] Override some broken make targets + * [444b07c] wrap-and-sort + + -- Alexander Wirt Sat, 25 Oct 2014 23:51:57 +0200 + +ferm (2.2-2) unstable; urgency=medium + + * [139cabd] Do not unconditionally overwrite ENABLED= in /etc/default/ferm. + Thanks to Christian Kastner for the patch (Closes: 714796) + + -- Alexander Wirt Tue, 15 Apr 2014 23:53:56 +0200 + +ferm (2.2-1) unstable; urgency=low + + * [2df2b7b] Fix watchfile + * [0e32933] Imported Upstream version 2.2 + + -- Alexander Wirt Mon, 01 Jul 2013 21:38:49 +0200 + +ferm (2.1.1-2) experimental; urgency=low + + [ Salvatore Bonaccorso ] + * Fix "ferm: modifies conffiles (policy 10.7.3): /etc/default/ferm" + (Closes: #688377) + - Don't install ferm.default as conffile in /etc/default + - Read /etc/default/ferm in ferm.config. + If /etc/default/ferm exists and ENABLED= is present then store the + value of ENABLED into debconf db. + - Create /etc/default/ferm in postinst. + Create /etc/default/ferm if it does not yet exists in postinst. + Furthermore if the admin deleted or commented the ENABLED then (re-)add + it to the configuration file in postinst. + - Remove configuration file on purge in postrm script + + -- Alexander Wirt Thu, 01 Nov 2012 19:28:58 +0100 + +ferm (2.1.1-1) experimental; urgency=low + + * [c95a63e] Add vcs fields to controlfile + * [60e8141] Imported Upstream version 2.1.1 + - Add support for TPROXY target + (Closes: #682728) + + -- Alexander Wirt Sun, 09 Sep 2012 16:46:45 +0200 + +ferm (2.1-2) unstable; urgency=low + + [ great debian l10n teams ] + * Fix pending l10n issues. Debconf translations: + * Danish (Joe Hansen). Closes: #626637 + * Polish (Michał Kułach). Closes: #660532 + * Italian (Beatrice Torracca). Closes: #660885 + * Slovak (Ivan Masár). Closes: #661139 + * Brazilian Portuguese (Adriano Rafael Gomes). Closes: #661356 + + [ Alexander Wirt ] + * bump standards version + + -- Alexander Wirt Fri, 09 Mar 2012 09:03:36 +0100 + +ferm (2.1-1) unstable; urgency=low + + * New upstream version + - fix variable expansion in subchain names (Closes: #577709) + - added @ipfilter function to mix ipv4 and ipv6 addresses + (Closes: #591329) + - @if @eq($DOMAIN, ip6) works now - yai (Closes: #591230) + - Map ICMP to ICMP6 in REJECT's reject-with + (Closes: #591229) + - Fix docs for $TRUSTED_HOSTS (Closes: #577701) + * Bump standards version (no changes) + * update danish debconf translation (Closes: #626637) + Thanks to Joe Dalton + + -- Alexander Wirt Mon, 18 Jul 2011 07:37:15 +0200 + +ferm (2.0.9-1) unstable; urgency=low + + * New upstream version + - allow truncing of strings with substr (Closes: #550854) + - mod mark is now in manpage (Closes: #578665) + * Don't stop firewall on shutdown (Closes: #591491) + + -- Alexander Wirt Sat, 26 Feb 2011 10:51:19 +0100 + +ferm (2.0.8-1) unstable; urgency=low + + * New upstream release + - Support eq,ne,not (Closes: #407563, #559902) + - resolve() now support different types like AAAA or MX (Closes: #544248) + - Fix docs for frag (Closes: #560000) + * Bump standards version (no changes) + * Explicitly use 1.0 format + + -- Alexander Wirt Thu, 04 Nov 2010 11:52:01 +0100 + +ferm (2.0.7-1) unstable; urgency=low + + * New upstream version + - Fix post & flush hooks + (Closes: #548579, #563779) + - Fix negiotation for owner module + (Closes: #553423) + - Fix "intrapositioned negation is deprecated" + (Closes: #544535) + * Remove Max as maintainer. Thanks for your previous work Max! + * Add russian debconf translation (Closes: #543185). Thanks Yuri Kozlov! + * Add japanese debconf translation (Closes: #554516). Thanks Hideki Yamane! + * Bump standards version (No changes) + * Update initlevels (Closes: #549295) + + -- Alexander Wirt Mon, 15 Feb 2010 10:36:59 +0100 + +ferm (2.0.6-1) unstable; urgency=low + + [ Max Kellermann ] + * new upstream release + - support negation in mark/connmark/set (Closes: #521827, #522359) + - added automatic variable $FILENAME (Closes: #525452) + - create a new stack frame for @subchain (Closes: #525450) + - doc: added real-world example for @if (Closes: #525458) + - enable @include to run a program (Closes: #525678) + * updated upstream home page (Closes: #525671) + * invalidate cache after kernel upgrade (Closes: #528654) + * improve the "ENABLED" .default variable description (Closes: #525438) + * check $CONFIG after sourcing the .default file (Closes: #525440) + * fix bashisms in init script, and run with /bin/sh + * print a warning when "/etc/init.d/ferm start" fails and the module + ip_tables is not loaded (Closes: #525444) + + [ Alexander Wirt ] + * Recommend libnet-dns-perl (Closes: #528500) + * Bump standards version (No changes) + + -- Alexander Wirt Sun, 19 Jul 2009 15:10:57 +0200 + +ferm (2.0.5-1) unstable; urgency=low + + [ Max Kellermann ] + * new upstream release + - flushing bug fixed (Closes: #511397) + - ipt_recent --remove supported (Closes: #511661) + - ignore dpkg's backup/temporary files (Closes: #510418) + * fixed typo in default configuration (Closes: #513099) + + -- Alexander Wirt Mon, 02 Mar 2009 21:35:34 +0100 + +ferm (2.0.4-1) unstable; urgency=low + + [ Max Kellermann ] + * new upstream release + + [ Alexander Wirt ] + * Add ${misc:Depends} to binary package + + -- Alexander Wirt Fri, 12 Dec 2008 09:02:48 +0100 + +ferm (2.0.3-2) unstable; urgency=low + + [ Max Kellermann ] + * added Finnish po translation (Closes: #501939) + + -- Alexander Wirt Wed, 15 Oct 2008 08:46:17 +0200 + +ferm (2.0.3-1) unstable; urgency=low + + [ Max Kellermann ] + * new upstream release + - fix subchain in include (Closes: #499515) + + -- Alexander Wirt Wed, 01 Oct 2008 13:03:48 +0200 + +ferm (2.0.2-1) unstable; urgency=low + + [ Max Kellermann ] + * new upstream release + + -- Alexander Wirt Sat, 26 Jul 2008 22:48:13 +0200 + +ferm (2.0.1-1) unstable; urgency=low + + [ Max Kellermann ] + * new upstream release + - don't include hidden files (Closes: #489271) + * now that "fast" mode is default in upstream, specify --slow in the + init script when fast mode is explicitly turned off by the admin + * use "--shell" in "slow" mode, to prevent iptables warnings from being + written to the cache + * added the actual copyright statement to debian/copyright + * updated debian/watch, change to 2.0 download directory + * added Swedish po translation (Closes: #492058) + + [ Alexander Wirt ] + * Bump standards version (No changes) + + -- Alexander Wirt Sat, 26 Jul 2008 11:41:54 +0200 + +ferm (1.3.4-1) unstable; urgency=low + + [ Max Kellermann ] + * new upstream release + + -- Alexander Wirt Thu, 12 Jun 2008 11:27:38 +0200 + +ferm (1.3.3-1) unstable; urgency=low + + [ Max Kellermann ] + * new upstream release + * check the time stamp of all files in /etc/ferm for cache validation + + -- Alexander Wirt Wed, 23 Jan 2008 12:11:18 +0100 + +ferm (1.3.2-1) unstable; urgency=low + + [ Max Kellermann ] + * new upstream release + - handle array after DNAT/to-destination correctly (Closes: #456994) + * don't shut down firewall during upgrade (Closes: #456187) + + -- Alexander Wirt Wed, 19 Dec 2007 10:45:36 +0100 + +ferm (1.3.1-1) unstable; urgency=low + + * new upstream release + - require IO::Handle, this fixes the interactive mode + * use Build-Depends-Indep to refer to po-debconf + + -- Max Kellermann Sun, 9 Dec 2007 00:39:45 +0100 + +ferm (1.3-1) unstable; urgency=low + + * new upstream release + - implemented conditionals with @if/@else (Closes: #419332) + - added function @resolve which resolves host names to IPv4 addresses + (Closes: #436742) + * start init script before other network services (Closes: #446930) + * fixed the URL in debian/watch (Closes: #450308) + + -- Max Kellermann Thu, 6 Dec 2007 23:02:54 +0100 + +ferm (1.2.5-1) unstable; urgency=low + + [ Max Kellermann ] + * new upstream release + - make --flush do something in fast mode (Closes: #434820) + * fix typo in README.Debian (Closes: #439180) + + [ Alexander Wirt ] + * Fix emacs shell tag (Closes: #439118) + + -- Alexander Wirt Sun, 14 Oct 2007 23:37:38 +0200 + +ferm (1.2.4-1) unstable; urgency=low + + [ Max Kellermann ] + * new upstream release + - implemented hooks (Closes: #418792) + * add Dutch po translation (Closes: #423072) + + [ Alexander Wirt ] + * Add debian/compat file + + -- Alexander Wirt Wed, 20 Jun 2007 20:59:16 +0200 + +ferm (1.2.3-3) unstable; urgency=low + + * Document OPTIONS= in default file + + -- Alexander Wirt Sun, 15 Apr 2007 02:19:17 +0200 + +ferm (1.2.3-2) unstable; urgency=low + + * Update spanish debconf translation (Closes: #412178) + * create directory /var/cache/ferm + * Add portuguese translation (Closes: #415630) + + -- Alexander Wirt Sun, 15 Apr 2007 01:59:41 +0200 + +ferm (1.2.3-1) unstable; urgency=low + + [ Max Kellermann ] + * new upstream release + - don't copy module references to subchain (Closes: #407353) + * don't build with cdbs anymore + * enable ferm's fast mode by default + * depend on iptables >= 1.3, because older versions of iptables-restore + have known bugs triggered by ferm's fast mode + + [ Alexander Wirt ] + * Add spanish translation (Closes: #411001) + * Update README.Debian + + -- Alexander Wirt Thu, 15 Feb 2007 09:33:54 +0100 + +ferm (1.2.2-1) unstable; urgency=low + + [ Max Kellermann ] + * new upstream release + - don't make "mod multiport" reset variables (Closes: #398867) + - mention deprecation of the "automod" feature in the manpage + (Closes: #397517) + * removed duplicate "Required-Stop" from init script + * removed "syslog" from "Required-Start" + + [ Alexander Wirt ] + * Add french po translation (Closes: #389909) + * Add czech po translation (Closes: #391476) + + -- Alexander Wirt Sat, 18 Nov 2006 00:33:04 +0100 + +ferm (1.2.1-1) unstable; urgency=low + + [ Max Kellermann ] + * New upstream version + - updated documentation, support target "ECN" (Closes: #207502) + * rephrase debconf prompt in an interface neutral way (Closes: #388248) + + -- Alexander Wirt Fri, 29 Sep 2006 21:48:33 +0200 + +ferm (1.2-1) unstable; urgency=low + + * New maintainers + * New upstream version + - generate correct uid-owner rules (Closes: #308910) + - don't break on comma separated lists with quotes (Closes: #241886) + - allows inclusion of files (Closes: #207505) + - support multiport iptables modules (Closes: #252034) + - warn if using undefined variables (Closes: #271965) + - adds support for backticks (Closes: #117730) + * Add startup script (Closes: #110928) + * Remove dependencies on ipchains and ipfwadm (Closes: #382662) + + -- Alexander Wirt Wed, 13 Sep 2006 16:47:19 +0200 + +ferm (1.1.1+1.2beta2-2) unstable; urgency=low + + * build-depend on debhelper 5 + * added author Max Kellermann to debian/copyright + * New maintainer(s) + + -- Alexander Wirt Wed, 13 Sep 2006 16:41:32 +0200 + +ferm (1.1.1+1.2beta2-1) unstable; urgency=low + + * no deprecated syntax in configuration file + * mention /etc/default/ferm in debconf menu + * use ferm --flush for rc stop + * use ferm --shell for caching in fast mode + * clear cache on remove + * added README.Debian + + -- Max Kellermann Sat, 9 Sep 2006 23:44:20 +0200 + +ferm (1.1.1+1.2beta1-1) unstable; urgency=low + + * store debconf variable "ferm/enable" in /etc/default/ferm + + -- Max Kellermann Tue, 29 Aug 2006 12:15:08 +0200 + +ferm (1.1+1.2beta1-1) unstable; urgency=low + + * new upstream version + * bumped Standards-Version to 3.7.2 + * changed Build-Depends-Indep to Build-Depends + * added hack to implement the "stop" command + + -- Max Kellermann Tue, 29 Aug 2006 00:08:54 +0200 + +ferm (1.1+svn20060320-1) unstable; urgency=low + + * new upstream snapshot from subversion + * don't import /etc/firewall.conf in preinst + * updated default configuration + * install import-ferm + + -- Max Kellermann Mon, 20 Mar 2006 13:53:59 +0100 + +ferm (1.1+svn20050606-1) unstable; urgency=low + + * new upstream snapshot from subversion + * added /etc/default/ferm + * support the --fast option, disabled by default + * cache the ferm output + + -- Max Kellermann Mon, 6 Jun 2005 23:38:30 +0200 + +ferm (1.1+svn20050313-1) unstable; urgency=low + + * new upstream snapshot from subversion + * changed maintainer + * new standards-version + * using cdbs + * depend on perl >= 5.6 + * provide a default configuration + * added debconf menu which enables or disables ferm on bootup + * conflict against (non-public) ferm-rc package; import + /etc/firewall.conf from this package + * imported description from upstream + + -- Max Kellermann Sun, 13 Mar 2005 21:22:30 +0100 + +ferm (1.1-1) unstable; urgency=low + + * New upstream release (Closes: #194170). Beware, there are syntax + changes. + + -- Tommi Virtanen Wed, 16 Jul 2003 19:12:02 +0300 + +ferm (1.0pl8-3) unstable; urgency=low + + * Allow use of lists when setting variables (Closes: #143606). + * Generate correct output when combining log and other targets with + ipchains (Closes: #144065). + * New standards version. + * No longer create compatibility symlinks in /usr/doc. + * Switch from Build-Depends to Build-Depends-Indep, this is an arch all + package. + + -- Tommi Virtanen Sat, 19 Apr 2003 22:06:06 +0300 + +ferm (1.0pl8-2) unstable; urgency=low + + * Add missing whitespace after --tos 0x00. + (Closes: #111855). + + -- Tommi Virtanen Fri, 12 Oct 2001 22:44:12 +0300 + +ferm (1.0pl8-1) unstable; urgency=low + + * New upstream version. Has improvements in manpage (Closes: #98519), + can autodetect needed modules (Closes: #100058), and has a NOP action + for accounting (Closes: #100056). + + -- Tommi Virtanen Thu, 19 Jul 2001 22:29:00 +0300 + +ferm (1.0pl6-2) unstable; urgency=low + + * Fixed cut-and-pasto, ferm is now architecture-independent + (Closes: #98141). + + -- Tommi Virtanen Sun, 24 Jun 2001 00:11:34 +0300 + +ferm (1.0pl6-1) unstable; urgency=low + + * New upstream version. + + -- Tommi Virtanen Wed, 30 May 2001 22:29:20 +0300 + +ferm (1.0pl5-1) unstable; urgency=low + + * New upstream version. + + -- Tommi Virtanen Thu, 17 May 2001 21:20:17 +0300 + +ferm (1.0pl3-1) unstable; urgency=low + + * New upstream version. + + -- Tommi Virtanen Thu, 10 May 2001 20:43:12 +0300 + +ferm (1.0pl1-1) unstable; urgency=low + + * New upstream version. + * Fixed a small grammar error in description. + + -- Tommi Virtanen Sat, 5 May 2001 00:54:53 +0300 + +ferm (0.0.18-1) unstable; urgency=low + + * New upstream version, includes fix for MASQERADE typo (Closes: + #94720) + * Fix cut-and-pasto, section should be net. + + -- Tommi Virtanen Sun, 22 Apr 2001 22:10:29 +0300 + +ferm (0.0.17-1) unstable; urgency=low + + * Initial version (Closes: #93154) + + -- Tommi Virtanen Sat, 7 Apr 2001 00:18:15 +0300 + --- ferm-2.2.orig/debian/compat +++ ferm-2.2/debian/compat @@ -0,0 +1 @@ +9 --- ferm-2.2.orig/debian/control +++ ferm-2.2/debian/control @@ -0,0 +1,35 @@ +Source: ferm +Section: net +Priority: optional +Maintainer: Alexander Wirt +Standards-Version: 3.9.3 +Build-Depends: debhelper (>= 9), dh-systemd +Build-Depends-Indep: po-debconf +Vcs-Browser: https://github.com/formorer/pkg-ferm +Vcs-Git: git://github.com/formorer/pkg-ferm.git +Homepage: http://ferm.foo-projects.org/ + +Package: ferm +Architecture: all +Depends: debconf (>= 1.2.0), + iptables (>= 1.3), + lsb-base (>= 3.0-6), + perl (>= 5.6), + ${misc:Depends} +Recommends: libnet-dns-perl +Description: maintain and setup complicated firewall rules + ferm is a frontend for iptables. It reads the rules from a + structured configuration file and calls iptables(8) to insert them + into the running kernel. + . + ferm's goal is to make firewall rules easy to write and easy to + read. It tries to reduce the tedious task of writing down rules, thus + enabling the firewall administrator to spend more time on developing + good rules than the proper implementation of the rule. + . + To achieve this, ferm uses a simple but powerful configuration + language, which allows variables, functions, arrays, blocks. It also + allows you to include other files, allowing you to create libraries + of commonly used structures and functions. + . + ferm, pronounced "firm", stands for "For Easy Rule Making". --- ferm-2.2.orig/debian/copyright +++ ferm-2.2/debian/copyright @@ -0,0 +1,27 @@ +This package was debianized by Tommi Virtanen tv@debian.org on +Sat, 7 Apr 2001 00:19:34 +0300. + +It was downloaded from http://ferm.foo-projects.org/ + +Upstream Authors: +Auke Kok +Max Kellermann + +Copyright: + +# +# Copyright (C) 2001-2008 Max Kellermann, Auke Kok +# +# This program is free software; you can redistribute it and/or modify +# it under the terms of the GNU General Public License as published by +# the Free Software Foundation; either version 2 of the License, or +# (at your option) any later version. +# +# This program is distributed in the hope that it will be useful, +# but WITHOUT ANY WARRANTY; without even the implied warranty of +# MERCHANTABILITY or FITNESS FOR A PARTICULAR PURPOSE. See the +# GNU General Public License for more details. +# + +On Debian Linux systems, the complete text of the GNU General Public +License can be found in '/usr/share/common-licenses/GPL'. --- ferm-2.2.orig/debian/ferm.conf +++ ferm-2.2/debian/ferm.conf @@ -0,0 +1,52 @@ +# -*- shell-script -*- +# +# Configuration file for ferm(1). +# + +table filter { + chain INPUT { + policy DROP; + + # connection tracking + mod state state INVALID DROP; + mod state state (ESTABLISHED RELATED) ACCEPT; + + # allow local packet + interface lo ACCEPT; + + # respond to ping + proto icmp ACCEPT; + + # allow IPsec + proto udp dport 500 ACCEPT; + proto (esp ah) ACCEPT; + + # allow SSH connections + proto tcp dport ssh ACCEPT; + } + chain OUTPUT { + policy ACCEPT; + + # connection tracking + #mod state state INVALID DROP; + mod state state (ESTABLISHED RELATED) ACCEPT; + } + chain FORWARD { + policy DROP; + + # connection tracking + mod state state INVALID DROP; + mod state state (ESTABLISHED RELATED) ACCEPT; + } +} + +# IPv6: +#domain ip6 { +# table filter { +# chain INPUT { +# policy ACCEPT; +# # ... +# } +# # ... +# } +#} --- ferm-2.2.orig/debian/ferm.config +++ ferm-2.2/debian/ferm.config @@ -0,0 +1,21 @@ +#!/bin/sh +set -e + +. /usr/share/debconf/confmodule + +db_version 2.0 +db_capb backup + +if ! test -f /etc/default/ferm || ! grep -q ^ENABLED= /etc/default/ferm; then + db_input high ferm/enable || true + db_go || true +fi + +# load configuration file if it exists and read +# value of ENABLED into Debconf database +if test -e /etc/default/ferm && grep -q '^ENABLED=' /etc/default/ferm; then + . /etc/default/ferm || true + + # Store values from config file into debconf db. + db_set ferm/enable "$ENABLED" +fi --- ferm-2.2.orig/debian/ferm.dirs +++ ferm-2.2/debian/ferm.dirs @@ -0,0 +1 @@ +var/cache/ferm --- ferm-2.2.orig/debian/ferm.docs +++ ferm-2.2/debian/ferm.docs @@ -0,0 +1,6 @@ +README +TODO +AUTHORS +NEWS +doc/ferm.txt +doc/ferm.html --- ferm-2.2.orig/debian/ferm.init +++ ferm-2.2/debian/ferm.init @@ -0,0 +1,129 @@ +#!/bin/sh +# +# ferm Configure ferm firewall rules from /etc/ferm.conf +# +# Written by Max Kellermann +# +# Version: $Revision: 325 $ +### BEGIN INIT INFO +# Provides: ferm +# Required-Start: $network $remote_fs +# Required-Stop: $network $remote_fs +# Default-Start: S +# Default-Stop: +# Description: Starts ferm firewall configuration +# short-description: ferm firewall configuration +### END INIT INFO + +#includes lsb functions +. /lib/lsb/init-functions + + +PATH=/usr/local/sbin:/usr/local/bin:/sbin:/bin:/usr/sbin:/usr/bin +FERM=/usr/sbin/ferm +CONFIG=/etc/ferm/ferm.conf +NAME=ferm +DESC="Firewall" +CACHE_DIR=/var/cache/ferm + +test -x $FERM || exit 0 + +umask 0077 + +unset ENABLED +FAST=yes +CACHE=no +OPTIONS= +unset DOMAINS +[ -r /etc/default/ferm ] && . /etc/default/ferm + +test -f "$CONFIG" || exit 0 + +if [ -n "$DOMAINS" ]; then + echo "Warning: the DOMAINS setting in /etc/default/ferm is deprecated." >&2 +fi + +if [ "$ENABLED" != "yes" ]; then + if [ "$VERBOSE" != no ]; then + if [ -z "$ENABLED" ]; then + echo "Not starting ferm - run 'dpkg-reconfigure ferm' to enable it" + else + echo "Not starting ferm - edit /etc/default/ferm to enable it" + fi + fi + exit 0 +fi + +[ "$CACHE" = "yes" -a ! -d $CACHE_DIR ] && CACHE=no + +set -e + +configure_ferm() { + local CACHE_NAME=${1:-start} + + if [ "$CACHE" = "yes" ]; then + local CACHE_FILE=$CACHE_DIR/$CACHE_NAME.sh + + # The .kernel file saves the kernel version number (copy of + # /proc/version). It is used to ensure that ferm is re-run + # after a kernel upgrade. + + if ! diff /proc/version $CACHE_FILE.kernel >/dev/null 2>&1 || \ + ! [ -f $CACHE_FILE -a \ + $CACHE_FILE -nt $CONFIG -a \ + -z "`find /etc/ferm -maxdepth 2 -newer $CACHE_FILE 2>/dev/null`" -a \ + $CACHE_FILE -nt /etc/default/ferm -a \ + $CACHE_FILE -nt /etc/init.d/ferm -a \ + $CACHE_FILE -nt $FERM ]; then + rm -f "$CACHE_FILE" "$CACHE_FILE".tmp "$CACHE_FILE".kernel || return $? + if [ "$FAST" = "yes" ]; then + $FERM $OPTIONS --shell $CONFIG >$CACHE_FILE.tmp || return $? + else + $FERM $OPTIONS --shell --slow $CONFIG >$CACHE_FILE.tmp || return $? + fi + cp /proc/version $CACHE_FILE.kernel + mv $CACHE_FILE.tmp $CACHE_FILE || return $? + else + . $CACHE_FILE || return $? + fi + else + if [ "$FAST" = "yes" ]; then + $FERM $OPTIONS $CONFIG || return $? + else + $FERM $OPTIONS --slow $CONFIG || return $? + fi + fi +} + +case "$1" in + start) + log_daemon_msg "Starting $DESC" "$NAME" + if configure_ferm; then + log_end_msg $? + else + log_end_msg $? + + if ! test "$VERBOSE" = no -o -f /proc/net/ip_tables_names; then + log_warning_msg "Looks like the ip_tables module is not loaded, see /etc/modules" + fi + fi + ;; + stop) + log_daemon_msg "Stopping $DESC" "$NAME" + OPTIONS="$OPTIONS --flush" + configure_ferm stop + log_end_msg $? + ;; + reload|restart|force-reload) + log_begin_msg "Reloading $DESC configuration..." + configure_ferm + log_end_msg $? + ;; + *) + N=/etc/init.d/$NAME + log_action_msg "Usage: $N {start|stop|restart|reload|force-reload}" + exit 1 + ;; +esac + +exit 0 --- ferm-2.2.orig/debian/ferm.install +++ ferm-2.2/debian/ferm.install @@ -0,0 +1,4 @@ +debian/ferm.conf etc/ferm +examples usr/share/doc/ferm +src/ferm usr/sbin +src/import-ferm usr/sbin --- ferm-2.2.orig/debian/ferm.lintian-overrides +++ ferm-2.2/debian/ferm.lintian-overrides @@ -0,0 +1 @@ +ferm: init.d-script-possible-missing-stop /etc/init.d/ferm 1 --- ferm-2.2.orig/debian/ferm.manpages +++ ferm-2.2/debian/ferm.manpages @@ -0,0 +1,2 @@ +doc/ferm.1 +doc/import-ferm.1 --- ferm-2.2.orig/debian/ferm.postinst +++ ferm-2.2/debian/ferm.postinst @@ -0,0 +1,52 @@ +#!/bin/sh +set -e + +action=$1 +version=$2 + +# generate default file if it doesn't exist +if [ ! -e /etc/default/ferm ]; then + cat > /etc/default/ferm <<-END + # configuration for /etc/init.d/ferm + + # use iptables-restore for fast firewall initialization? + FAST=yes + + # cache the output of ferm --lines in /var/cache/ferm? + CACHE=yes + + # additional paramaters for ferm (like --def '$foo=bar') + OPTIONS= + + # Enable the ferm init script? (i.e. run on bootup) + END +fi + +if [ "$action" = configure ]; then + . /usr/share/debconf/confmodule + db_version 2.0 + + # get values from debconf db + db_get ferm/enable + if [ "$RET" = "false" ]; then + VALUE="no" + else + VALUE="yes" + fi + + # If the admin deleted or commented some variables but then set + # them via debconf, (re-)add them to the configuration file + grep -Eq '^ *ENABLED=' /etc/default/ferm || \ + echo "ENABLED=\"$VALUE\"" >> /etc/default/ferm + + # make the firewall configuration readable only by root and group adm + if ! dpkg-statoverride --list /etc/ferm > /dev/null 2>&1 + then + if [ -d /etc/ferm ]; then + chown -R root:adm /etc/ferm + chmod 2750 /etc/ferm + fi + fi +fi + +#DEBHELPER# --- ferm-2.2.orig/debian/ferm.postrm +++ ferm-2.2/debian/ferm.postrm @@ -0,0 +1,10 @@ +#!/bin/sh +set -e + +rm -f /var/cache/ferm/*.sh /var/cache/ferm/*.tmp + +if [ "$1" = "purge" ]; then + rm -f /etc/default/ferm +fi + +#DEBHELPER# --- ferm-2.2.orig/debian/ferm.preinst +++ ferm-2.2/debian/ferm.preinst @@ -0,0 +1,23 @@ +#!/bin/sh +set -e + +action=$1 +version=$2 + +if [ "$action" = upgrade ]; then + # remove old cache files + rm -f /var/cache/ferm/*.sh /var/cache/ferm/*.tmp +fi + +if [ "$action" = upgrade -a -n "$version" ]; then + if dpkg --compare-versions "$version" lt "1.1.1" && + dpkg --compare-versions "$version" gt "1.1-1"; then + # upgrade from the 1.2 alpha ("1.1+svnXX") releases + + # this flag has been obsoleted, it is now a variable in + # /etc/default/ferm + rm -f /etc/ferm/disabled_on_bootup + fi +fi + +#DEBHELPER# --- ferm-2.2.orig/debian/ferm.service +++ ferm-2.2/debian/ferm.service @@ -0,0 +1,15 @@ +[Unit] +Description=ferm firewall configuration +DefaultDependencies=no +RequiresMountsFor=/var/cache/ +After=local-fs.target network.target + +[Service] +Type=oneshot +RemainAfterExit=yes +ExecStart=/etc/init.d/ferm start +ExecReload=/etc/init.d/ferm reload +ExecStop=/etc/init.d/ferm stop + +[Install] +WantedBy=sysinit.target --- ferm-2.2.orig/debian/ferm.templates +++ ferm-2.2/debian/ferm.templates @@ -0,0 +1,9 @@ +Template: ferm/enable +Type: boolean +Default: true +_Description: Enable ferm on bootup? + Ferm can load firewall rules on every bootup from /etc/ferm/ferm.conf. + . + The default configuration allows SSH login on port 22; if you are + installing this package remotely on another port, you should not + choose this option, and later edit /etc/default/ferm to enable ferm. --- ferm-2.2.orig/debian/po/POTFILES.in +++ ferm-2.2/debian/po/POTFILES.in @@ -0,0 +1 @@ +[type: gettext/rfc822deb] ferm.templates --- ferm-2.2.orig/debian/po/cs.po +++ ferm-2.2/debian/po/cs.po @@ -0,0 +1,43 @@ +# Czech translation of ferm debconf messages. +# Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER +# This file is distributed under the same license as the ferm package. +# Miroslav Kure , 2006. +# +msgid "" +msgstr "" +"Project-Id-Version: ferm\n" +"Report-Msgid-Bugs-To: ferm-maintainers@ned.snow-crash.org\n" +"POT-Creation-Date: 2006-09-25 22:40+0200\n" +"PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n" +"Last-Translator: Miroslav Kure \n" +"Language-Team: Czech \n" +"Language: cs\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Enable ferm on bootup?" +msgstr "Povolit ferm při zavádění systému?" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Ferm can load firewall rules on every bootup from /etc/ferm/ferm.conf." +msgstr "" +"Ferm může při každém startu systému nahrát pravidla firewallu ze souboru /" +"etc/ferm/ferm.conf." + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "" +"The default configuration allows SSH login on port 22; if you are installing " +"this package remotely on another port, you should not choose this option, " +"and later edit /etc/default/ferm to enable ferm." +msgstr "" +"Výchozí konfigurace umožňuje přihlášení přes SSH na portu 22. Instalujete-li " +"tento balík vzdáleně přes jiný port, měli byste nyní tuto možnost zamítnout " +"a později povolit ferm úpravou souboru /etc/default/ferm." --- ferm-2.2.orig/debian/po/da.po +++ ferm-2.2/debian/po/da.po @@ -0,0 +1,42 @@ +# Danish translation ferm. +# Copyright (C)ferm & nedenstående oversættere. +# This file is distributed under the same license as the ferm package. +# Joe Hansen (joedalton2@yahoo.dk), 2011. +# +msgid "" +msgstr "" +"Project-Id-Version: ferm\n" +"Report-Msgid-Bugs-To: ferm-maintainers@ned.snow-crash.org\n" +"POT-Creation-Date: 2006-09-25 22:40+0200\n" +"PO-Revision-Date: 2011-05-13 18:30+01:00\n" +"Last-Translator: Joe Hansen \n" +"Language-Team: Danish \n" +"Language: da\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Enable ferm on bootup?" +msgstr "Aktiver ferm ved opstart?" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Ferm can load firewall rules on every bootup from /etc/ferm/ferm.conf." +msgstr "" +"Ferm kan indlæse brandmursregler ved hver opstart fra /etc/ferm/ferm.conf." + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "" +"The default configuration allows SSH login on port 22; if you are installing " +"this package remotely on another port, you should not choose this option, " +"and later edit /etc/default/ferm to enable ferm." +msgstr "" +"Standardkonfigurationen tillader SSH-logind på port 22; hvis du installerer " +"denne pakke eksternt på en anden port, skal du ikke vælge denne indstilling, " +"men senere redigere /etc/default/ferm for at aktivere ferm." --- ferm-2.2.orig/debian/po/de.po +++ ferm-2.2/debian/po/de.po @@ -0,0 +1,43 @@ +# ferm gettext template. +# Copyright (C) 2006 +# This file is distributed under the same license as the ferm package. +# Max Kellermann , 2006. +# +msgid "" +msgstr "" +"Project-Id-Version: 1.2\n" +"Report-Msgid-Bugs-To: ferm-maintainers@ned.snow-crash.org\n" +"POT-Creation-Date: 2006-09-25 22:40+0200\n" +"PO-Revision-Date: 2006-09-25 22:43+0200\n" +"Last-Translator: Alexander Wirt \n" +"Language-Team: ferm-maintainers@ned.snow-crash.org\n" +"Language: \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=utf-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Enable ferm on bootup?" +msgstr "Ferm beim Systemstart aktivieren?" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Ferm can load firewall rules on every bootup from /etc/ferm/ferm.conf." +msgstr "" +"Ferm kann die Firewallregeln bei jedem Systemstart aus /etc/ferm/ferm.conf " +"laden." + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "" +"The default configuration allows SSH login on port 22; if you are installing " +"this package remotely on another port, you should not choose this option, " +"and later edit /etc/default/ferm to enable ferm." +msgstr "" +"Die Standardkonfiguration beschränkt den Zugang auf SSH (Port 22); wenn Ihr " +"SSH Dienst auf einem anderen Port läuft, sollten Sie diese Option nicht " +"wählen und später /etc/default/ferm manuell editieren um ferm zu aktivieren. " --- ferm-2.2.orig/debian/po/es.po +++ ferm-2.2/debian/po/es.po @@ -0,0 +1,70 @@ +# Ferm translation to spanish +# Copyright (C) 2007 Free Software Foundation, Inc. +# This file is distributed under the same license as the package. +# +# Changes: +# - Initial translation +# Javier Ruano Ruano , 2007 +# +# +# Traductores, si no conoce el formato PO, merece la pena leer la +# documentación de gettext, especialmente las secciones dedicadas a este +# formato, por ejemplo ejecutando: +# info -n '(gettext)PO Files' +# info -n '(gettext)Header Entry' +# +# Equipo de traducción al español, por favor lean antes de traducir +# los siguientes documentos: +# +# - El proyecto de traducción de Debian al español +# http://www.debian.org/intl/spanish/ +# especialmente las notas y normas de traducción en +# http://www.debian.org/intl/spanish/notas +# +# - La guía de traducción de po's de debconf: +# /usr/share/doc/po-debconf/README-trans +# o http://www.debian.org/intl/l10n/po-debconf/README-trans +# +# Si tiene dudas o consultas sobre esta traducción consulte con el último +# traductor (campo Last-Translator) y ponga en copia a la lista de +# traducción de Debian al español () +# +msgid "" +msgstr "" +"Project-Id-Version: Ferm\n" +"Report-Msgid-Bugs-To: ferm-maintainers@ned.snow-crash.org\n" +"POT-Creation-Date: 2006-09-25 22:40+0200\n" +"PO-Revision-Date: 2007-01-13 18x:00+0200\n" +"Last-Translator: Javier Ruano Ruano \n" +"Language-Team: Debian L10n Spanish \n" +"Language: \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Enable ferm on bootup?" +msgstr "¿Iniciar ferm durante el arranque?" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Ferm can load firewall rules on every bootup from /etc/ferm/ferm.conf." +msgstr "" +"Ferm cargará las reglas del cortafuegos durante el arranque desde «/etc/ferm/" +"ferm.conf»." + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "" +"The default configuration allows SSH login on port 22; if you are installing " +"this package remotely on another port, you should not choose this option, " +"and later edit /etc/default/ferm to enable ferm." +msgstr "" +"La configuración predeterminada permite el acceso por SSH a través del " +"puerto 22; Si está instalando este paquete remotamente a través de otro " +"puerto, no debería elegir esta opción, edite más tarde «/etc/default/ferm» " +"para activarlo." --- ferm-2.2.orig/debian/po/fi.po +++ ferm-2.2/debian/po/fi.po @@ -0,0 +1,40 @@ +msgid "" +msgstr "" +"Project-Id-Version: ferm\n" +"Report-Msgid-Bugs-To: ferm-maintainers@ned.snow-crash.org\n" +"POT-Creation-Date: 2006-09-25 22:40+0200\n" +"PO-Revision-Date: \n" +"Last-Translator: Esko Arajärvi \n" +"Language-Team: Finnish \n" +"Language: fi\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" +"X-Poedit-Language: Finnish\n" +"X-Poedit-Country: FINLAND\n" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Enable ferm on bootup?" +msgstr "Käynnistetäänkö ferm käynnistettäessä tietokone?" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Ferm can load firewall rules on every bootup from /etc/ferm/ferm.conf." +msgstr "" +"Ferm voi ladata palomuurisäännöt tiedostosta /etc/ferm/ferm.conf jokaisen " +"käynnistyksen yhteydessä." + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "" +"The default configuration allows SSH login on port 22; if you are installing " +"this package remotely on another port, you should not choose this option, " +"and later edit /etc/default/ferm to enable ferm." +msgstr "" +"Oletusasetukset sallivat SSH-kirjautumiset portissa 22. Jos asennat tätä " +"pakettia etänä toisen portin kautta, älä valitse tätä vaihtoehtoa, vaan " +"muokkaa myöhemmin tiedostoa /etc/default/ferm ottaaksesi fermin käyttöön." --- ferm-2.2.orig/debian/po/fr.po +++ ferm-2.2/debian/po/fr.po @@ -0,0 +1,43 @@ +# ferm gettext template. +# Copyright (C) 2006 +# This file is distributed under the same license as the 2006 package. +# Max Kelleramen (max@duempel.org). +# +msgid "" +msgstr "" +"Project-Id-Version: ferm\n" +"Report-Msgid-Bugs-To: ferm-maintainers@ned.snow-crash.org\n" +"POT-Creation-Date: 2006-09-25 22:40+0200\n" +"PO-Revision-Date: 2006-09-19 13:00+0200\n" +"Last-Translator: Thomas Huriaux \n" +"Language-Team: French \n" +"Language: fr\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=utf-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Enable ferm on bootup?" +msgstr "Faut-il lancer ferm au démarrage ?" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Ferm can load firewall rules on every bootup from /etc/ferm/ferm.conf." +msgstr "" +"Ferm peut charger à chaque démarrage les règles du pare-feu présentes dans /" +"etc/ferm/ferm.conf." + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "" +"The default configuration allows SSH login on port 22; if you are installing " +"this package remotely on another port, you should not choose this option, " +"and later edit /etc/default/ferm to enable ferm." +msgstr "" +"La configuration par défaut autorise les connexions SSH sur le port 22. Si " +"vous installez ce paquet à distance en utilisant un autre port, vous devriez " +"refuser cette option et modifier /etc/default/ferm pour activer ferm." --- ferm-2.2.orig/debian/po/it.po +++ ferm-2.2/debian/po/it.po @@ -0,0 +1,45 @@ +# Italian translation of ferm debconf messages. +# Copyright (C) 2012, ferm package copyright holder +# This file is distributed under the same license as the ferm package. +# Beatrice Torracca , 2012. +msgid "" +msgstr "" +"Project-Id-Version: ferm 2.1-1\n" +"Report-Msgid-Bugs-To: ferm-maintainers@ned.snow-crash.org\n" +"POT-Creation-Date: 2006-09-25 22:40+0200\n" +"PO-Revision-Date: 2012-02-22 18:06+0200\n" +"Last-Translator: Beatrice Torracca \n" +"Language-Team: Italian \n" +"Language: it\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" +"Plural-Forms: nplurals=2; plural=(n != 1);\n" +"X-Generator: Virtaal 0.7.1\n" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Enable ferm on bootup?" +msgstr "Abilitare ferm all'avvio?" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Ferm can load firewall rules on every bootup from /etc/ferm/ferm.conf." +msgstr "" +"Ferm può caricare le regole del firewall da /etc/ferm/ferm.conf ad ogni " +"avvio." + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "" +"The default configuration allows SSH login on port 22; if you are installing " +"this package remotely on another port, you should not choose this option, " +"and later edit /etc/default/ferm to enable ferm." +msgstr "" +"La configurazione predefinita permette il login SSH sulla porta 22; se si " +"sta installando questo pacchetto da remoto su un'altra porta, non si " +"dovrebbe scegliere questa opzione ma modificare successivamente /etc/default/" +"ferm per abilitare ferm." --- ferm-2.2.orig/debian/po/ja.po +++ ferm-2.2/debian/po/ja.po @@ -0,0 +1,43 @@ +# Copyright (C) 2009 ferm maintainers +# This file is distributed under the same license as ferm package. +# Hideki Yamane , 2009. +# +msgid "" +msgstr "" +"Project-Id-Version: ferm 2.0.6-1\n" +"Report-Msgid-Bugs-To: ferm-maintainers@ned.snow-crash.org\n" +"POT-Creation-Date: 2006-09-25 22:40+0200\n" +"PO-Revision-Date: 2009-10-25 06:52+0900\n" +"Last-Translator: Hideki Yamane (Debian-JP) \n" +"Language-Team: Japanese \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Enable ferm on bootup?" +msgstr "システム起動時に ferm を有効にしますか?" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Ferm can load firewall rules on every bootup from /etc/ferm/ferm.conf." +msgstr "" +"ferm は、毎回のシステム起動時に /etc/ferm/ferm.conf からファイアウォールの設定" +"を読み込むことができます。" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "" +"The default configuration allows SSH login on port 22; if you are installing " +"this package remotely on another port, you should not choose this option, " +"and later edit /etc/default/ferm to enable ferm." +msgstr "" +"デフォルトの設定ではポート番号 22 で SSH のログインを許可しています。" +"リモートから別のポート番号にてこのパッケージをインストールしている場合、この" +"設定を選んではいけません。後ほど ferm を有効にするために /etc/default/ferm を" +"編集してください。" + --- ferm-2.2.orig/debian/po/nl.po +++ ferm-2.2/debian/po/nl.po @@ -0,0 +1,44 @@ +# SOME DESCRIPTIVE TITLE. +# Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER +# This file is distributed under the same license as the PACKAGE package. +# FIRST AUTHOR , YEAR. +# +msgid "" +msgstr "" +"Project-Id-Version: ferm\n" +"Report-Msgid-Bugs-To: ferm-maintainers@ned.snow-crash.org\n" +"POT-Creation-Date: 2006-09-25 22:40+0200\n" +"PO-Revision-Date: 2007-04-29 12:42+0100\n" +"Last-Translator: Bart Cornelis \n" +"Language-Team: debian-l10n-dutch \n" +"Language: \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=utf-8\n" +"Content-Transfer-Encoding: 8bit\n" +"X-Poedit-Language: Dutch\n" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Enable ferm on bootup?" +msgstr "Wilt u ferm activeren tijdens het opstarten van het systeem?" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Ferm can load firewall rules on every bootup from /etc/ferm/ferm.conf." +msgstr "" +"Ferm kan firewall-regels laden van /etc/ferm/ferm.conf bij elke systeemstart." + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "" +"The default configuration allows SSH login on port 22; if you are installing " +"this package remotely on another port, you should not choose this option, " +"and later edit /etc/default/ferm to enable ferm." +msgstr "" +"De standaardconfiguratie laat aanmelden via SSH op poort 22 toe; als u dit " +"pakket van op afstand via een andere poort installeert slaat u deze optie " +"best af, om dan later ferm te activeren door /etc/default/ferm handmatig aan " +"te passen." --- ferm-2.2.orig/debian/po/pl.po +++ ferm-2.2/debian/po/pl.po @@ -0,0 +1,47 @@ +# Translation of ferm debconf templates to Polish. +# Copyright (C) 2006 +# This file is distributed under the same license as the ferm package. +# +# Michał Kułach , 2012. +msgid "" +msgstr "" +"Project-Id-Version: \n" +"Report-Msgid-Bugs-To: ferm-maintainers@ned.snow-crash.org\n" +"POT-Creation-Date: 2006-09-25 22:40+0200\n" +"PO-Revision-Date: 2012-02-19 19:13+0100\n" +"Last-Translator: Michał Kułach \n" +"Language-Team: Polish \n" +"Language: pl\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" +"X-Generator: Lokalize 1.2\n" +"Plural-Forms: nplurals=3; plural=(n==1 ? 0 : n%10>=2 && n%10<=4 && (n%100<10 " +"|| n%100>=20) ? 1 : 2);\n" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Enable ferm on bootup?" +msgstr "Włączać ferm w czasie uruchomienia systemu?" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Ferm can load firewall rules on every bootup from /etc/ferm/ferm.conf." +msgstr "" +"Ferm może ładować reguły zapory sieciowej w czasie każdego rozruchu, z " +"pliku /etc/ferm/ferm.conf." + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "" +"The default configuration allows SSH login on port 22; if you are installing " +"this package remotely on another port, you should not choose this option, " +"and later edit /etc/default/ferm to enable ferm." +msgstr "" +"Domyślna konfiguracja zezwala na logowanie przez SSH za pomocą portu 22; " +"jeśli pakiet jest instalowany zdalnie z innego portu, to nie należy wybierać " +"tej wersji, lecz powinno się włączyć ferm później, edytując plik /etc/" +"default/ferm." --- ferm-2.2.orig/debian/po/pt.po +++ ferm-2.2/debian/po/pt.po @@ -0,0 +1,43 @@ +# Portuguese translation of ferm's debconf messages. +# Copyright (C) 2007 +# This file is distributed under the same license as the ferm package. +# Ricardo Silva , YEAR. +# +msgid "" +msgstr "" +"Project-Id-Version: ferm 1.2.3-1\n" +"Report-Msgid-Bugs-To: ferm-maintainers@ned.snow-crash.org\n" +"POT-Creation-Date: 2006-09-25 22:40+0200\n" +"PO-Revision-Date: 2007-03-20 09:19+0000\n" +"Last-Translator: Ricardo Silva \n" +"Language-Team: Portuguese \n" +"Language: pt\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Enable ferm on bootup?" +msgstr "Activar o ferm no arranque?" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Ferm can load firewall rules on every bootup from /etc/ferm/ferm.conf." +msgstr "" +"O ferm pode carregar regras de firewall do ficheiro /etc/ferm/ferm.conf em " +"cada arranque." + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "" +"The default configuration allows SSH login on port 22; if you are installing " +"this package remotely on another port, you should not choose this option, " +"and later edit /etc/default/ferm to enable ferm." +msgstr "" +"A configuração por omissão permite login por SSH no porto 22; Se está a " +"instalar este pacote remotamente noutro porto, não deve escolher esta opção, " +"e posteriormente editar o ficheiro /etc/default/ferm para activar o ferm." --- ferm-2.2.orig/debian/po/pt_BR.po +++ ferm-2.2/debian/po/pt_BR.po @@ -0,0 +1,44 @@ +# Debconf translations for ferm. +# Copyright (C) 2012 THE ferm'S COPYRIGHT HOLDER +# This file is distributed under the same license as the ferm package. +# Adriano Rafael Gomes , 2012. +# +msgid "" +msgstr "" +"Project-Id-Version: ferm\n" +"Report-Msgid-Bugs-To: ferm-maintainers@ned.snow-crash.org\n" +"POT-Creation-Date: 2006-09-25 22:40+0200\n" +"PO-Revision-Date: 2012-02-23 19:37-0200\n" +"Last-Translator: Adriano Rafael Gomes \n" +"Language-Team: Brazilian Portuguese \n" +"Language: pt_BR\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Enable ferm on bootup?" +msgstr "Habilitar o ferm na inicialização do sistema?" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Ferm can load firewall rules on every bootup from /etc/ferm/ferm.conf." +msgstr "" +"O ferm pode carregar as regras de firewall a cada inicialização do sistema, " +"a partir de /etc/ferm/ferm.conf." + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "" +"The default configuration allows SSH login on port 22; if you are installing " +"this package remotely on another port, you should not choose this option, " +"and later edit /etc/default/ferm to enable ferm." +msgstr "" +"A configuração padrão permite login SSH via porta 22; se você está " +"instalando esse pacote remotamente via outra porta, você deve rejeitar essa " +"opção, e mais tarde editar o arquivo /etc/default/ferm para habilitar o ferm." --- ferm-2.2.orig/debian/po/ru.po +++ ferm-2.2/debian/po/ru.po @@ -0,0 +1,47 @@ +# translation of ru.po to Russian +# Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER +# This file is distributed under the same license as the PACKAGE package. +# +# Yuri Kozlov , 2009. +msgid "" +msgstr "" +"Project-Id-Version: ferm 2.0.6-1\n" +"Report-Msgid-Bugs-To: ferm-maintainers@ned.snow-crash.org\n" +"POT-Creation-Date: 2006-09-25 22:40+0200\n" +"PO-Revision-Date: 2009-08-08 21:41+0400\n" +"Last-Translator: Yuri Kozlov \n" +"Language-Team: Russian \n" +"Language: ru\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" +"X-Generator: KBabel 1.11.4\n" +"Plural-Forms: nplurals=3; plural=(n%10==1 && n%100!=11 ? 0 : n%10>=2 && n" +"%10<=4 && (n%100<10 || n%100>=20) ? 1 : 2);\n" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Enable ferm on bootup?" +msgstr "Запускать ferm при загрузке операционной системы?" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Ferm can load firewall rules on every bootup from /etc/ferm/ferm.conf." +msgstr "" +"Ferm может загружать правила межсетевого экрана из файла /etc/ferm/ferm.conf " +"при запуске операционной системы." + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "" +"The default configuration allows SSH login on port 22; if you are installing " +"this package remotely on another port, you should not choose this option, " +"and later edit /etc/default/ferm to enable ferm." +msgstr "" +"Настройками по умолчанию разрешён доступ по SSH на порту 22; если вы " +"устанавливаете этот пакет подключившись удалённо по другому порту, то " +"ответьте отрицательно, и позже отредактируйте /etc/default/ferm, чтобы " +"включить запуск ferm." --- ferm-2.2.orig/debian/po/sk.po +++ ferm-2.2/debian/po/sk.po @@ -0,0 +1,43 @@ +# Slovak translation for ferm debconf template. +# Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER +# This file is distributed under the same license as the ferm package. +# +# Ivan Masár , 2012. +# +msgid "" +msgstr "" +"Project-Id-Version: ferm\n" +"Report-Msgid-Bugs-To: ferm-maintainers@ned.snow-crash.org\n" +"POT-Creation-Date: 2006-09-25 22:40+0200\n" +"PO-Revision-Date: 2012-02-24 13:32+0100\n" +"Last-Translator: Ivan Masár \n" +"Language-Team: Slovak \n" +"Language: sk\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=utf-8\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Enable ferm on bootup?" +msgstr "Zapnúť ferm pri štarte?" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Ferm can load firewall rules on every bootup from /etc/ferm/ferm.conf." +msgstr "" +"Ferm môže načítať pravidlá firewallu pri každom štarte z /etc/ferm/ferm.conf." + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "" +"The default configuration allows SSH login on port 22; if you are installing " +"this package remotely on another port, you should not choose this option, " +"and later edit /etc/default/ferm to enable ferm." +msgstr "" +"Predvolená konfigurácia umožňuje prihlásenie pomocou SSH na porte 22. Ak " +"tento balík inštalujete vzdialene na inom porte, nemali by ste vybrať túto " +"voľbu, ale neskôr upraviť /etc/default/ferm a zapnúť ferm." --- ferm-2.2.orig/debian/po/sv.po +++ ferm-2.2/debian/po/sv.po @@ -0,0 +1,47 @@ +# translation of ferm_1.3.4-1_sv.po to Swedish +# ferm. +# Copyright (C) 2008 +# This file is distributed under the same license as the ferm package. +# +# Martin Ågren , 2008. +msgid "" +msgstr "" +"Project-Id-Version: ferm_1.3.4-1_sv\n" +"Report-Msgid-Bugs-To: ferm-maintainers@ned.snow-crash.org\n" +"POT-Creation-Date: 2006-09-25 22:40+0200\n" +"PO-Revision-Date: 2008-07-23 17:30+0200\n" +"Last-Translator: Martin Ågren \n" +"Language-Team: Swedish \n" +"Language: sv\n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=UTF-8\n" +"Content-Transfer-Encoding: 8bit\n" +"X-Generator: KBabel 1.11.4\n" +"Plural-Forms: nplurals=2; plural=(n != 1);\n" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Enable ferm on bootup?" +msgstr "Aktivera ferm vid systemets uppstart?" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Ferm can load firewall rules on every bootup from /etc/ferm/ferm.conf." +msgstr "" +"Ferm kan ladda brandväggsregler från /etc/ferm/ferm.conf vid varje " +"systemuppstart." + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "" +"The default configuration allows SSH login on port 22; if you are installing " +"this package remotely on another port, you should not choose this option, " +"and later edit /etc/default/ferm to enable ferm." +msgstr "" +"Standardkonfigurationen tillåter SSH-inloggningar på port 22; om du " +"installerar det här paketet genom fjärråtkomst på en annan port, ska du inte " +"välja detta val. Ändra i så fall /etc/default/ferm senare för att aktivera " +"ferm." --- ferm-2.2.orig/debian/po/templates.pot +++ ferm-2.2/debian/po/templates.pot @@ -0,0 +1,38 @@ +# SOME DESCRIPTIVE TITLE. +# Copyright (C) YEAR THE PACKAGE'S COPYRIGHT HOLDER +# This file is distributed under the same license as the PACKAGE package. +# FIRST AUTHOR , YEAR. +# +#, fuzzy +msgid "" +msgstr "" +"Project-Id-Version: PACKAGE VERSION\n" +"Report-Msgid-Bugs-To: ferm-maintainers@ned.snow-crash.org\n" +"POT-Creation-Date: 2006-09-25 22:40+0200\n" +"PO-Revision-Date: YEAR-MO-DA HO:MI+ZONE\n" +"Last-Translator: FULL NAME \n" +"Language-Team: LANGUAGE \n" +"MIME-Version: 1.0\n" +"Content-Type: text/plain; charset=CHARSET\n" +"Content-Transfer-Encoding: 8bit\n" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Enable ferm on bootup?" +msgstr "" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "Ferm can load firewall rules on every bootup from /etc/ferm/ferm.conf." +msgstr "" + +#. Type: boolean +#. Description +#: ../ferm.templates:1001 +msgid "" +"The default configuration allows SSH login on port 22; if you are installing " +"this package remotely on another port, you should not choose this option, " +"and later edit /etc/default/ferm to enable ferm." +msgstr "" --- ferm-2.2.orig/debian/rules +++ ferm-2.2/debian/rules @@ -0,0 +1,13 @@ +#!/usr/bin/make -f +# -*- mode: makefile; coding: utf-8 -*- + +# See debhelper(7) (uncomment to enable) +# output every command that modifies files on the build system. +#DH_VERBOSE = 1 + +%: + dh $@ --with systemd + +override_dh_auto_clean:: + +override_dh_auto_install:: --- ferm-2.2.orig/debian/source/format +++ ferm-2.2/debian/source/format @@ -0,0 +1 @@ +1.0 --- ferm-2.2.orig/debian/watch +++ ferm-2.2/debian/watch @@ -0,0 +1,3 @@ +version=3 + +http://ferm.foo-projects.org/download/2.2/ferm-([0-9.]*)\.tar\.gz