View Single Post
Old 23rd December 2009
There0 There0 is offline
./dev/null
 
Join Date: Jul 2008
Posts: 169
Default

Quote:
That was me, not Oko.. if this device is physically secure and there are no external users accessing it, then it makes little sense to disable your ability to modify pf configuration or write to raw devices, but whatever tickles your fancy.
RightO, BSDfan666 = Oko, promise not to again.

That does tickle my fancy (i am paranoid hence i use OpenBSD for ALL my servers), firewalls should not be "touched" while in production, if it needs to be edited "shutdown now" and "exit" get me to where i want to be and take about 10 seconds. Just the way i do it, i do not find it a hassle in any way and was just sharing.
__________________
The more you learn, the more you realize how little you know ....
Reply With Quote