Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 17 Aug 2004 17:48:51 -0500
From:      Marc Cabanatuan <mcabanatuan@wi.rr.com>
To:        Chuck Swiger <cswiger@mac.com>
Cc:        freebsd-questions@freebsd.org
Subject:   Re: multi-homing and pf; removing user with uid 0
Message-ID:  <41228B53.9080405@wi.rr.com>
In-Reply-To: <41227CC2.7060303@mac.com>
References:  <412279F4.7040805@wi.rr.com> <41227CC2.7060303@mac.com>

next in thread | previous in thread | raw e-mail | index | archive | help
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

so far ive got this along with the primary inet address with the /27
subnet mask in /etc/rc.conf


ifconfig_rl0_alias*="inet 0.0.0.0 netmask 255.255.255.255" (replacing
0's with ip address of course)
Chuck Swiger wrote:

| Marc Cabanatuan wrote: [ ... ]
|
|> Right now I've got a /27 and I am attemtpting to add 5 addresses
|> of that adress block (ipv4) to the box as either seperate
|> addreses (not aliases to the primary interface) or seperate
|> addresses bound to sub-interfaces. So far I have been
|> unsuccessful and the host told me to use aliases.
|
|
| FreeBSD doesn't let you configure multiple IP addresses within the
| same subnet.  You will either have to use different netmasks, or
| else use aliases as recommended.
|
|> I also wish for these settings to stay after (re)boot.
|
|
| See /etc/rc.conf, and add something like:
|
| # Sample alias entry. #ifconfig_lo0_alias0="inet 127.0.0.254
| netmask 0xffffffff"
|
|> Not to mention they say my firewall is the problem and they
|> couldn't get out to the internet from root console (im using pf
|> and have the rule of 'pass out all'.
|
|
| Hmm.
|
|> Next thing, a second account just 'showed up' on the box with uid
|> 0.
|>
|> toor:*:0:0:Bourne-again Superuser:/root: - from
|> /etc/master.passwd
|>
|> I suspect it was techs from the host, but I want it off the
|> machine. How do I do this?
|
|
| FreeBSD ships with a toor account available but disabled, which can
|  be useful if someone breaks the shell used by the root account
| itself.  If you want to get rid of it, run vipw.
|

- --
Marc Cabanatuan <mcabanatuan@wi.rr.com>
Network and Systems Administrator
A+, Net+, Linux+, CCNA, MCP


-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.4 (GNU/Linux)
Comment: Using GnuPG with Thunderbird - http://enigmail.mozdev.org

iD8DBQFBIotTQXmDWC9ByjIRAiRrAJ4sCx8m0/eaKHU4OcZS9EQAYrAlQwCg2+Cw
YXerOL9ouz07WCB7S8PohG8=
=OVE9
-----END PGP SIGNATURE-----



Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?41228B53.9080405>