Date: Sun, 2 Oct 2005 19:12:42 +0000 (UTC) From: Yar Tikhiy <yar@FreeBSD.org> To: src-committers@FreeBSD.org, cvs-src@FreeBSD.org, cvs-all@FreeBSD.org Subject: cvs commit: src/etc/rc.d pf Message-ID: <200510021912.j92JCgXZ091214@repoman.freebsd.org>
next in thread | raw e-mail | index | archive | help
yar 2005-10-02 19:12:42 UTC
FreeBSD src repository
Modified files:
etc/rc.d pf
Log:
Record dependency on the newly introduced pfsync.
Start before routing for better system protection.
(pf used to start late during system boot, after
many a network daemon have started already, which
sucked from security POV.)
Remark: For maximum security, pf should start before
netif, but it would create a dependency loop because
pfsync has to start after netif, yet before pf.
Discussed with: mlaier on -pf
MFC after: 5 days
Revision Changes Path
1.9 +2 -2 src/etc/rc.d/pf
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200510021912.j92JCgXZ091214>