View Single Post
Old 23rd December 2009
There0 There0 is offline
Join Date: Jul 2008
Posts: 170

That was me, not Oko.. if this device is physically secure and there are no external users accessing it, then it makes little sense to disable your ability to modify pf configuration or write to raw devices, but whatever tickles your fancy.
RightO, BSDfan666 = Oko, promise not to again.

That does tickle my fancy (i am paranoid hence i use OpenBSD for ALL my servers), firewalls should not be "touched" while in production, if it needs to be edited "shutdown now" and "exit" get me to where i want to be and take about 10 seconds. Just the way i do it, i do not find it a hassle in any way and was just sharing.
The more you learn, the more you realize how little you know ....
Reply With Quote