Date: Wed, 16 Feb 2005 17:47:01 +0200 From: Peter Pentchev <roam@ringlet.net> To: Denis Peplin <den@FreeBSD.org> Cc: freebsd-doc@FreeBSD.org Subject: Re: [PATCH] handbook/firewalls: rewrite warning Message-ID: <20050216154701.GI2971@straylight.m.ringlet.net> In-Reply-To: <42136211.9080908@FreeBSD.org> References: <42136211.9080908@FreeBSD.org>
next in thread | previous in thread | raw e-mail | index | archive | help
--WkHPBKJ2pKcVUM5H Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Wed, Feb 16, 2005 at 06:09:05PM +0300, Denis Peplin wrote: > Hello! >=20 > Some parts of handbook's firewall chapter still > can mislead some users. >=20 > Patch (attached) mostly obtained from security > chapter, rev. 1.229 >=20 > I will apply this small patch to current firewalls > sections after 2 days, if no objections. >=20 > Thanks! > Index: firewalls/chapter.sgml > =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D= =3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D=3D > RCS file: /home/dcvs/doc/en_US.ISO8859-1/books/handbook/firewalls/chapter= =2Esgml,v > retrieving revision 1.34 > diff -u -r1.34 chapter.sgml > --- firewalls/chapter.sgml 15 Feb 2005 15:09:42 -0000 1.34 > +++ firewalls/chapter.sgml 16 Feb 2005 14:59:10 -0000 > @@ -950,13 +950,12 @@ > sets and is the only rule set type covered herein.</para> > =20 > <warning> > - <para>When working with the firewall rules, always, > - always do it on the console of the system running the > - firewall or you can end up locking your self out. > - Alternatively, you may setup a cronjob to flush the > - firewall rules say every five minutes. > - This may not be acceptable for a corporate firewall, > - but should be ok for a home firewall.</para> > + <para>When working with the firewall rules, be > + <emphasis>very careful</emphasis>. Some configurations > + <emphasis>will lock yourself out</emphasis> of the server. Errr.. shouldn't that be 'will lock *you* out'? :) Other than that, no objections here - and the original text did indeed need some clarification :) G'luck, Peter --=20 Peter Pentchev roam@ringlet.net roam@cnsys.bg roam@FreeBSD.org PGP key: http://people.FreeBSD.org/~roam/roam.key.asc Key fingerprint FDBA FD79 C26F 3C51 C95E DF9E ED18 B68D 1619 4553 If this sentence were in Chinese, it would say something else. --WkHPBKJ2pKcVUM5H Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.4.0 (FreeBSD) iD8DBQFCE2r17Ri2jRYZRVMRAt9BAJ4g/LuP9RGEJ7+1iEWMcbtaChU/rwCcCrWO lXc45beskspNXMYEj0qv8Y4= =UNtv -----END PGP SIGNATURE----- --WkHPBKJ2pKcVUM5H--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20050216154701.GI2971>