Quote:
Originally Posted by marav
a/sysvinit-scripts-15.1-noarch-3.txz: Rebuilt. rc.6: support an optional rc.firewall_shutdown script.
|
This is a lovely and unexpected holiday gift. It's just what I wanted. Thank you! 💚 💚 💚
Here's the feedback that you asked for.
Running
rc.firewall_shutdown so late is not advantageous for my package. I do not drop shields during shutdown. I only do housekeeping.
It has one disadvantage. The housekeeping step writes a file. With the network down, remote filesystems are down. My package will be incompatible with installations that have
/var/lib on a remote filesystem.
This is why, for my purpose, the ideal startup order is: up network, read firewall rules, start daemons. The ideal shutdown order is exactly the reverse: stop daemons, write firewall rules, down network.
I will build in support for
rc.firewall_shutdown for 15.1, and I'll handle remote
/var/lib as a special case. Later, if you rethink the run order, I will remove the special case.
Again, thank you.