Changeset d40737d

Timestamp:

03/07/2010 12:34:03 AM (14 years ago)

Author:

Bruce Dubbs <bdubbs@…>

Branches:

10.0, 10.1, 11.0, 11.1, 11.2, 11.3, 12.0, 12.1, 7.10, 7.4, 7.5, 7.6, 7.6-blfs, 7.6-systemd, 7.7, 7.8, 7.9, 8.0, 8.1, 8.2, 8.3, 8.4, 9.0, 9.1, basic, bdubbs/svn, elogind, gnome, kde5-13430, kde5-14269, kde5-14686, kea, ken/TL2024, ken/inkscape-core-mods, ken/tuningfonts, krejzi/svn, lazarus, lxqt, nosym, perl-modules, plabs/newcss, plabs/python-mods, python3.11, qt5new, rahul/power-profiles-daemon, renodr/vulkan-addition, systemd-11177, systemd-13485, trunk, upgradedb, xry111/intltool, xry111/llvm18, xry111/soup3, xry111/test-20220226, xry111/xf86-video-removal

Children:

2cc7a668

Parents:

0e5a229a

Message:

Fix iptables install locations

git-svn-id: svn://svn.linuxfromscratch.org/BLFS/trunk/BOOK@8300 af4574ff-66df-0310-9fd7-8a98e5e911e0

Location:

postlfs

Files:

• config/devices.xml (modified) (1 diff)
• security/iptables.xml (modified) (3 diffs)

postlfs/config/devices.xml

@@ -79 +79 @@
     If a package maintainer forgot to write a rule for your device,
     report a bug to both BLFS (if the package is there) and upstream, and 
-    you will need ot write your own rule.</para>
+    you will need to write your own rule.</para>
 
     <para>There is one situation when such fine-grained access control with

postlfs/security/iptables.xml

@@ -109 +109 @@
     commands:</para>
 
-<screen><userinput>./configure --prefix=/usr &amp;&amp;
+<screen><userinput>
+./configure --prefix=/usr     \
+            --bindir=/sbin    \
+            --sbindir=/sbin   \
+            --libdir=/lib     \
+            --libexecdir=/lib \
+            --with-pkgconfigdir=/usr/lib/pkgconfig &amp;&amp;
 make</userinput></screen>
 
@@ -119 +125 @@
 
   </sect2>
-<!--
+
   <sect2 role="commands">
     <title>Command Explanations</title>
 
-    <para><command>sed -i 's/name="$node/name="node/' iptables.xslt</command>:
-    This corrects a syntax error in the XSLT stylesheet for use with
-    <command>iptables-xml</command>.</para>
-
-    <para><parameter>PREFIX=/usr LIBDIR=/lib BINDIR=/sbin</parameter>:
-    Compiles and installs <application>iptables</application> modules
-    into <filename class="directory">/lib</filename>, binaries into
-    <filename class="directory">/sbin</filename> and the remainder into
-    the <filename class="directory">/usr</filename> hierarchy instead of
-    <filename class="directory">/usr/local</filename>. Firewalls are
-    generally activated during the boot process and
-    <filename class="directory">/usr</filename> may not be mounted at
-    that time.</para>
-
-    <para><parameter>KERNEL_DIR=/usr</parameter>: This parameter is used to
-    point at the sanitized kernel headers in
-    <filename class='directory'>/usr</filename> and not use the raw kernel
-    headers in <filename class='directory'>/usr/src/linux</filename>.</para>
-
-  </sect2>
--->
+    <para><parameter>--bindir=/sbin</parameter>, 
+    <parameter>--sbindir=/sbin</parameter>:  Ensure all the executables go
+    in <filename class="directory">/sbin</filename>.</para>
+
+    <para><parameter>--libdir=/lib</parameter>, 
+    <parameter>--libexecdir=/lib</parameter>:  Ensure all the libraries are 
+    in the <filename class="directory">/lib</filename> directory tree.</para>
+
+    <para><parameter>--with-pkgconfigdir=/usr/lib/pkgconfig</parameter>:  
+    Ensure all the pkgconfig files are in the standard location.</para>
+
+  </sect2>
+
   <sect2 role="configuration">
     <title>Configuring Iptables</title>
@@ -180 +178 @@
         and ip6tables-multii</seg>
         <seg>libip4tc.so, libip6tc.so, libiptc.so, libxtables.so,
-        and numerous modules in /usr/libexec/xtables/</seg>
-        <seg>/usr/libexec/xtables and /usr/include/libiptc</seg>
+        and numerous modules in /lib/xtables/</seg>
+        <seg>/lib/xtables/xtables and /usr/include/libiptc</seg>
       </seglistitem>
     </segmentedlist>