From owner-freebsd-stable  Mon Jan 28 11:54:17 2002
Delivered-To: freebsd-stable@freebsd.org
Received: from ns.yogotech.com (ns.yogotech.com [206.127.123.66])
	by hub.freebsd.org (Postfix) with ESMTP id B90EB37B404
	for <stable@FreeBSD.ORG>; Mon, 28 Jan 2002 11:54:06 -0800 (PST)
Received: from caddis.yogotech.com (caddis.yogotech.com [206.127.123.130])
	by ns.yogotech.com (8.9.3/8.9.3) with ESMTP id MAA03513;
	Mon, 28 Jan 2002 12:53:49 -0700 (MST)
	(envelope-from nate@yogotech.com)
Received: (from nate@localhost)
	by caddis.yogotech.com (8.11.6/8.11.6) id g0SJrha69398;
	Mon, 28 Jan 2002 12:53:44 -0700 (MST)
	(envelope-from nate)
From: Nate Williams <nate@yogotech.com>
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Message-ID: <15445.44102.288461.155113@caddis.yogotech.com>
Date: Mon, 28 Jan 2002 12:53:42 -0700
To: Erik Trulsson <ertr1013@student.uu.se>
Cc: C J Michaels <cjm2@earthling.net>, charon@seektruth.org,
	dsyphers@uchicago.edu, imp@village.org, stable@FreeBSD.ORG
Subject: Re: Firewall config non-intuitiveness
In-Reply-To: <20020128192930.GA86720@student.uu.se>
References: <200201271757.g0RHvTF12944@midway.uchicago.edu>
	<1617.216.153.202.59.1012240332.squirrel@www1.27in.tv>
	<20020128192930.GA86720@student.uu.se>
X-Mailer: VM 6.96 under 21.1 (patch 14) "Cuyahoga Valley" XEmacs Lucid
Reply-To: nate@yogotech.com (Nate Williams)
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-stable.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-stable>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-stable>
X-Loop: FreeBSD.ORG

> Note that "do not enable firewall" (which is implied by firewall_enable="NO") 
> is *not* equivalent to "disable firewall".

Maybe we're having an English language question.

If something isn't enabled, doesn't that imply that it's disabled?  Last
I checked, enabled/disabled were binary operations.

If I enable the clutch in my car, my car moves (assuming it's in gear).
If I disable it, the power is no longer going to the drive wheels.

It's either enabled or disabled.  There is no 'in-between' state.
(Well, unless you're riding the clutch, but that's not considered a
valid state, since the behavior is undefined, as well as bad for your
clutch. :)


Nate

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message