The random "forget settings"-bug

Get help with LXQt specific problems
ElectriQT
Samurai
Samurai
Posts: 116
Joined: 10 Nov 2013, 12:02
Distribution: LXDE3.5Manjaro, LXDE3.01-32bit
Location: Sweden

The random "forget settings"-bug

Post#1 by ElectriQT » 31 Dec 2014, 02:13

@Brokenman
Hi there

I find this "loosing settings&FireWall"-stuff almost to be a dealbreaker now for Porteus.
Can we help to fix that?


It is not ok when they "forgets" the language and a lot worse is that the firewall can suddenly be off, and no real warning about that.
We should have an indicator?

(and why not default it to "block all" instead of "open" ? )

It was a fresh LXQT32 bit from the ISO-configurator,
I lost the download link but have the iso on disk, i dont think it is needed, as I have seen this before with other isos too. It is a common problem.

This iso was with LXQt32bit, firefox and libreoffice,
standad videodriver, no printing, no skype,
keyboard = se, , timezone stockholm(sweden)
user and rootpassw
20% zRam
I added noauto (is that a problem for the psc and changes-modules at boot..? I think it should not be a problem as it is mounted during the "copy 2ram" boot process)

In PSC The Firewall was set to ON, and "Block all" ,
a new rootpassw was also set at the same time in PSC,
I Saved this session to Module
I Saved PSC at exit from the tool

Now I Rebooted.. = I get an us-keyboard... and:

Code: Select all

 root@porteus:/home/guest# iptables -L
Chain INPUT (policy ACCEPT)
target     prot opt source               destination         

Chain FORWARD (policy ACCEPT)
target     prot opt source               destination         

Chain OUTPUT (policy ACCEPT)
target     prot opt source               destination  
OBS, that the NEW passwd DID work this time! NOT forgotten, strange.
That could maybe be a clue for you?
But in 3.01 the new passwd have also been lost sometimes, and then it defaulted back to "toor" .. :-/
,

But it does forget other things also now, like the alsamixer that was saved in terminal (and I did remove the volume % level in the bootconfig file) but it did not work, the headphone and other things did not stay up at 100% after reboot.

So some things DO work ..and some did not , now after reboot

I assume it is 2-3 files involved here, the 0099 settings in base folder, and the changes-module and psc from modules-folder,

So They all seems loaded but something dont work ok,
( they seems to load OK when I check the log and look at startup screen, .. )

Are the Passwd in the PSC-module AND ALSO in the 0099settings?
(It seems to fall back to settings from the isoconfigurator. (where languages and volume dont work)

Are language, firewall and sound in the "changes"-module? If so that is the module that dont always work, even if it is loaded.

Thanks, I Hope this helps

ElectriQT
Samurai
Samurai
Posts: 116
Joined: 10 Nov 2013, 12:02
Distribution: LXDE3.5Manjaro, LXDE3.01-32bit
Location: Sweden

Re: The random "forget settings"-bug

Post#2 by ElectriQT » 31 Dec 2014, 02:27

After setting it again, Not any reboot yet, it looks like this below,
(I think someone have also fixed the "Policy Accept" to Policy Drop now, good I assume, I dont know IPtables
But why is "domain" there?? (It should not. According to the tool, right?)

"Blockall" = we only allow Port 80 and 443,
This error might be a thing that have confused me in the past..
So The GUI dont work correct, it should show the actual situation, not say one thing and after that do another and hide from us what happened?

Code: Select all

root@porteus:/home/guest# iptables -L
Chain INPUT (policy DROP)
target     prot opt source               destination         
ACCEPT     all  --  anywhere             anywhere            
ACCEPT     udp  --  anywhere             anywhere             udp dpt:domain
ACCEPT     udp  --  anywhere             anywhere             udp spt:domain
ACCEPT     all  --  anywhere             anywhere             ctstate RELATED,ESTABLISHED
ACCEPT     tcp  --  anywhere             anywhere             tcp spt:http state ESTABLISHED
ACCEPT     tcp  --  anywhere             anywhere             tcp spt:https state ESTABLISHED
LOG_DROP   all  --  anywhere             anywhere            

Chain FORWARD (policy DROP)
target     prot opt source               destination         
LOG_DROP   all  --  anywhere             anywhere            

Chain OUTPUT (policy DROP)
target     prot opt source               destination         
ACCEPT     all  --  anywhere             anywhere            
ACCEPT     udp  --  anywhere             anywhere             udp dpt:domain
ACCEPT     udp  --  anywhere             anywhere             udp spt:domain
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:http state NEW,ESTABLISHED
ACCEPT     tcp  --  anywhere             anywhere             tcp dpt:https state NEW,ESTABLISHED

Chain LOG_DROP (2 references)
target     prot opt source               destination         
DROP       all  --  anywhere             anywhere      

ElectriQT
Samurai
Samurai
Posts: 116
Joined: 10 Nov 2013, 12:02
Distribution: LXDE3.5Manjaro, LXDE3.01-32bit
Location: Sweden

Re: The random "forget settings"-bug

Post#3 by ElectriQT » 31 Dec 2014, 02:50

I was wondering why my network had trafic ,
in htop I found "Avahi" running there, before I have enabled it or had run any of the Avahi-applications that I now also found under the "internet" -menu.

I have Never heard of Avahi before
But It Seems like it now transmitting mDns or something out to the whole internet without my knowledge, at the wifi in the city, is that really a good idea to sent out things like that nowdays for all people on all networks?

This is way beyond my knowledge, .. therefore I very much like to turn all things like that OFF by default, until I really need it..

-So, OK.. how?

and how to really block and trust with the "block all" firewall in the future?

donald
Full of knowledge
Full of knowledge
Posts: 2063
Joined: 17 Jun 2013, 13:17
Distribution: Porteus 3.2.2 XFCE 32bit
Location: Germany

Re: The random "forget settings"-bug

Post#4 by donald » 31 Dec 2014, 04:26

iirc..one can disable avahi,ntp and so on in /etc/rd.d/rc.services

ElectriQT
Samurai
Samurai
Posts: 116
Joined: 10 Nov 2013, 12:02
Distribution: LXDE3.5Manjaro, LXDE3.01-32bit
Location: Sweden

Re: The random "forget settings"-bug

Post#5 by ElectriQT » 31 Dec 2014, 10:19

-Aha, I did not find info about how to do that

But I think that would be a very good idea,

can we do a script to place in the menus with the avahi-stuff that are already there?
Default Leakage settings to off.

Is it hard to do a small program/script or similar that easy for the end user just modifies this ( +the firewall..)

As I see it now both outgoing and ingoing packets of mdns should be blocked/droped in the "block all"-mode to be the more safe choice for Privacy and protect company from attacker / spy,

( It seems that mDns is not in the LAN-ip range, therefore can even leak out of LAN too?,
( but.. well, the "LAN" here can be city / gov -wifi, without encryption.. so even if we use https-always this avahi-stuff still leak out and display us all in clear text to all that can sniff radio? if I understand it correct now, this is at an multicast-IP? )

Post Reply