Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 5 Sep 2008 17:43:44 +0200
From:      Albert Shih <Albert.Shih@obspm.fr>
To:        Sean Cavanaugh <millenia2000@hotmail.com>
Cc:        freebsd-questions@freebsd.org
Subject:   Re: portsnap in cron and firewall
Message-ID:  <20080905154344.GL5474@pcjas.obspm.fr>
In-Reply-To: <BAY126-W4655DF1DD6692E49F7FD9ECA580@phx.gbl>
References:  <20080905141402.GJ5474@pcjas.obspm.fr> <BAY126-W4655DF1DD6692E49F7FD9ECA580@phx.gbl>
next in thread | previous in thread | raw e-mail | index | archive | help 
 Le 05/09/2008 à 11:33:59-0400, Sean Cavanaugh a écrit
> 
> 
> > Date: Fri, 5 Sep 2008 16:14:02 +0200> From: Albert.Shih@obspm.fr>
> > To: freebsd-questions@freebsd.org> Subject: portsnap in cron and
> > firewall> > Hi all> > I've some servers for internal use. On those
> > servers I have some pf (or> ipfw) rule to deny any connection from
> > inside to outside. > > Long time ago when ports tree is update with
> > cvs, I'm using something like> > pf command to open inside -->
> > outside connection> cvsup > portupgrade --fetch-only --all> pf
> > command to close inside --> outside connection> > But now with
> > portsnap cron (that's mean random sleep) I don't known when> the
> > system try to connect outside. > > Do you have any idea how can I
> > make my update using portsnap (I known I can> use cvsup) in a
> > crontab with my network config ? >
>  
> "portsnap cron" just randomizes the time to download unlike "portsnap
> fetch" which says to do it right now. cron was added to help randomize
> the time so everyone syncing at midnight UTC arent all hitting at
> exact same time.

Yes I known. That's why I'm asking you how can I make portsnap through the
cron and opening firewall just before he going to make the connection.

Of course I can hack the portsnap to make he don't try to see if it's fork
by cron or not. But it's not a good idea IMHO, what's happen if all person
do that ? 

Regards.

-- 
Albert SHIH
SIO batiment 15
Observatoire de Paris Meudon
5 Place Jules Janssen
92195 Meudon Cedex
Heure local/Local time:
Ven 5 sep 2008 17:41:30 CEST

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20080905154344.GL5474>