diff options
author | Pablo M. Bermudo Garay <pablombg@gmail.com> | 2017-06-06 00:08:26 +0200 |
---|---|---|
committer | Pablo Neira Ayuso <pablo@netfilter.org> | 2017-06-06 17:41:33 +0200 |
commit | 8e62f572d8ab00b076d07b658d64251996b3b5b2 (patch) | |
tree | 7c19894b1c9223a256d57627b9c879a22ef0020b /extensions/libxt_owner.txlate | |
parent | 8d994bcf6be09cd0a13d6f22c6e01e98fb130415 (diff) |
tests: xlate: generalize owner
The owner name was hard-coded in the owner extension translation test.
The translation process requires the user to exist in the system, so
this commit replaces it with the usual UID_MIN value (1000).
Signed-off-by: Pablo M. Bermudo Garay <pablombg@gmail.com>
Signed-off-by: Pablo Neira Ayuso <pablo@netfilter.org>
Diffstat (limited to 'extensions/libxt_owner.txlate')
-rw-r--r-- | extensions/libxt_owner.txlate | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/extensions/libxt_owner.txlate b/extensions/libxt_owner.txlate index eeca168b..86fb0585 100644 --- a/extensions/libxt_owner.txlate +++ b/extensions/libxt_owner.txlate @@ -4,5 +4,5 @@ nft add rule ip nat OUTPUT tcp dport 80 skuid 0 counter accept iptables-translate -t nat -A OUTPUT -p tcp --dport 80 -m owner --gid-owner 0-10 -j ACCEPT nft add rule ip nat OUTPUT tcp dport 80 skgid 0-10 counter accept -iptables-translate -t nat -A OUTPUT -p tcp --dport 80 -m owner ! --uid-owner pablo -j ACCEPT +iptables-translate -t nat -A OUTPUT -p tcp --dport 80 -m owner ! --uid-owner 1000 -j ACCEPT nft add rule ip nat OUTPUT tcp dport 80 skuid != 1000 counter accept |