From owner-freebsd-stable Wed Jul 11 6:33:48 2001 Delivered-To: freebsd-stable@freebsd.org Received: from alpo.whistle.com (s206m1.whistle.com [207.76.206.1]) by hub.freebsd.org (Postfix) with ESMTP id BFDEE37B426 for ; Wed, 11 Jul 2001 06:33:38 -0700 (PDT) (envelope-from mark@whistle.com) Received: from [207.76.207.129] (PBG4.whistle.com [207.76.207.129]) by alpo.whistle.com (8.9.1a/8.9.1) with ESMTP id GAA76583; Wed, 11 Jul 2001 06:31:46 -0700 (PDT) Mime-Version: 1.0 X-Sender: mark-ml@207.76.206.1 Message-Id: In-Reply-To: <20010710202209.A4563@freeway.dcfinc.com> References: <200107100227.WAA25392@world.std.com> <200107101450.KAA24607@world.std.com> <200107110138.VAA28255@world.std.com> <20010710202209.A4563@freeway.dcfinc.com> Date: Wed, 11 Jul 2001 06:31:49 -0700 To: "Chad R. Larson" From: Mark Peek Subject: Re: Tracking -stable remotely/colocated Cc: freebsd-stable@FreeBSD.ORG Content-Type: text/plain; charset="us-ascii" ; format="flowed" Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG At 8:22 PM -0700 7/10/01, Chad R. Larson wrote: >But one thing I intend to do is cross-wire the serial ports of each >redundant machine pairs we install and run serial consoles on them. That >is, the pair of machines that are performing firewall duty (and database >duty, and web server duty, and Java servlet container duty...) will be >able to see each other's consoles on their serial ports. That way, I >should be able to re-boot (and debug) the offline guy via the online >machine. Just something to think about...if one of your firewall systems gets compromised, the perpetrators will then have console access to your other firewall system. Mark To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message