From mboxrd@z Thu Jan 1 00:00:00 1970 From: Patrick McHardy Subject: Re: [PATCH]: fix all iptables problems with '!' (hopefully) Date: Mon, 06 Jan 2003 16:33:44 +0100 Sender: netfilter-devel-admin@lists.netfilter.org Message-ID: <3E19A1D8.7080605@trash.net> References: <35565.195.97.5.193.1041816667.squirrel@fs.tsaousis.gr> <20030106020219.GC423@comet.rv-int> <3E193B0E.9030602@trash.net> <36373.195.97.5.193.1041856153.squirrel@fs.tsaousis.gr> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Cc: Netfilter Development Mailinglist Return-path: To: Costa Tsaousis In-Reply-To: <36373.195.97.5.193.1041856153.squirrel@fs.tsaousis.gr> Errors-To: netfilter-devel-admin@lists.netfilter.org List-Help: List-Post: List-Subscribe: , List-Unsubscribe: , List-Archive: List-Id: netfilter-devel.vger.kernel.org Costa Tsaousis wrote: >Patrick McHardy said: > > >>I did, here is the (untested) patch, hopefully i didn't miss any. >>I didn't change any of the "save"-functions, this patch just replaces >>all uses >>of optarg after check_inverse by argv[optind-1]. >> >> > >I didn't test it, but keep in mind that the ! in certain cases has to be >placed *before* the argument and its value. > >For example: > >--uid-owner ! squid > >is not accepted either ("user '!' not found"). The correct is: > >! --uid-owner squid > > In fact ! is used in many matches in a non-boolean context. After the patch is applied, both it always possible (! --uid-owner xxx / --uid-owner ! xxx). It would still be nice to have the helptexts unified concerning the use of '!', i think. Regards, Patrick