[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [cobalt-security] Re: Portsentry, ipchains and pmfirewall
- Subject: Re: [cobalt-security] Re: Portsentry, ipchains and pmfirewall
- From: "E.B. Dreger" <eddy+public+spam@xxxxxxxxxxxxxxxxx>
- Date: Tue, 22 Jan 2002 20:59:14 +0000 (GMT)
- List-id: Mailing list for users to address network security on Cobalt products. <cobalt-security.list.cobalt.com>
> Date: Wed, 23 Jan 2002 09:46:04 +1300
> From: Render-Vue <sales@xxxxxxxxxxxxxx>
> So what's the recommendation on this set-up if the rules set
> gets screwed? I know when testing new rules we comment the
That's where some advocate a delay before loading rules. If
screwed, reboot, log in before the rules kick in, and do what you
need.
> line out and test manually - but there is the chance that after
> uncommenting the line and rebooting the ruleset gets
> corrupt/screwed or you realise that you made a mistake :<
If you're worried about that, you probably want a delay. I
don't commit rules until I'm convinced that they're good, and I
don't edit the startup script directly.
I feel that it's better to change behavior to facilitate no-delay
rule loading, rather than require delayed rule loading due to
behavior.
> I'm I been parnoid (hee hee)
Paranoid is good. :-)
> Regards
>
> Chae
Eddy
---------------------------------------------------------------------------
Brotsman & Dreger, Inc. - EverQuick Internet Division
Phone: +1 (316) 794-8922 Wichita/(Inter)national
Phone: +1 (785) 865-5885 Lawrence
---------------------------------------------------------------------------
Date: Mon, 21 May 2001 11:23:58 +0000 (GMT)
From: A Trap <blacklist@xxxxxxxxx>
To: blacklist@xxxxxxxxx
Subject: Please ignore this portion of my mail signature.
These last few lines are a trap for address-harvesting spambots. Do NOT
send mail to <blacklist@xxxxxxxxx>, or you are likely to be blocked.