Skip to content
New issue

Have a question about this project? Sign up for a free GitHub account to open an issue and contact its maintainers and the community.

Sign up for GitHub

By clicking “Sign up for GitHub”, you agree to our terms of service and privacy statement. We’ll occasionally send you account related emails.

Already on GitHub? Sign in to your account

Jump to bottom

T3420: Remove service upnp #3452

Merged
merged 1 commit into from
May 14, 2024
Merged

T3420: Remove service upnp #3452

merged 1 commit into from
May 14, 2024

Conversation

sever-sever
Copy link
Member

@sever-sever sever-sever commented May 14, 2024
edited
Loading

Change Summary

Remove service upnp as it never worked as expected, NFT rules are not integrated, and custom patches do not seem like a suitable solution for now.

Security:
UPnP has been historically associated with security risks due to its automatic and potentially unauthenticated nature.
UPnP devices might be vulnerable to unauthorized access or exploitation.

Types of changes

  • Bug fix (non-breaking change which fixes an issue)
  • New feature (non-breaking change which adds functionality)
  • Code style update (formatting, renaming)
  • Refactoring (no functional changes)
  • Migration from an old Vyatta component to vyos-1x, please link to related PR inside obsoleted component
  • Other (please describe): Remove unstable code/feature

Related Task(s)

Related PR(s)

vyos/vyos-build#618

Component(s) name

upnp

Proposed changes

How to test

Smoketest result

Checklist:

  • I have read the CONTRIBUTING document
  • I have linked this PR to one or more Phabricator Task(s)
  • I have run the components SMOKETESTS if applicable
  • My commit headlines contain a valid Task id
  • My change requires a change to the documentation
  • I have updated the documentation accordingly

@sever-sever
T3420: Remove service upnp
7c438ca 
Remove `service upnp` as it never worked as expected, nft rules do
not integrated and custom patches do not seem like a suitable
solution for now.

Security:
UPnP has been historically associated with security risks due to its automatic
and potentially unauthenticated nature.
UPnP devices might be vulnerable to unauthorized access or exploitation.
@sever-sever sever-sever requested review from a team, dmbaturin, sarthurdev, zdc, jestabro and c-po and removed request for a team May 14, 2024 16:57
@sever-sever sever-sever mentioned this pull request May 14, 2024
Merged
11 tasks
andamasov
andamasov approved these changes May 14, 2024
View reviewed changes
Copy link
Member

@andamasov andamasov left a comment

Choose a reason for hiding this comment

The reason will be displayed to describe this comment to others. Learn more.

ok for me

@sever-sever sever-sever merged commit f45b1b5 into vyos:current May 14, 2024
8 checks passed
@GurliGebis
Copy link
Contributor

Backport to sagitta?

@sever-sever
Copy link
Member Author

@Mergifyio backport sagitta

@mergify Mergify
Copy link
Contributor

mergify bot commented May 14, 2024
edited
Loading

backport sagitta

✅ Backports have been created

This was referenced May 14, 2024
Merged
Merged
c-po added a commit that referenced this pull request May 15, 2024
@c-po
Merge pull request #3453 from vyos/mergify/bp/sagitta/pr-3452
8c98231 
T3420: Remove service upnp (backport #3452)
Sign up for free to join this conversation on GitHub. Already have an account? Sign in to comment
Reviewers

@andamasov andamasov andamasov approved these changes

@dmbaturin dmbaturin dmbaturin approved these changes

@sarthurdev sarthurdev Awaiting requested review from sarthurdev sarthurdev is a code owner automatically assigned from vyos/reviewers

@zdc zdc Awaiting requested review from zdc zdc is a code owner automatically assigned from vyos/reviewers

@jestabro jestabro Awaiting requested review from jestabro jestabro is a code owner automatically assigned from vyos/reviewers

@c-po c-po Awaiting requested review from c-po c-po is a code owner automatically assigned from vyos/reviewers

Assignees

@sever-sever sever-sever

Labels
current
Milestone
No milestone
Development

Successfully merging this pull request may close these issues.
4 participants
@sever-sever @GurliGebis @dmbaturin @andamasov