From owner-freebsd-net@FreeBSD.ORG  Sat Mar 12 15:15:06 2005
Return-Path: <owner-freebsd-net@FreeBSD.ORG>
Delivered-To: freebsd-net@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id E361516A4CE
	for <freebsd-net@freebsd.org>; Sat, 12 Mar 2005 15:15:06 +0000 (GMT)
Received: from parrot.aev.net (host29-15.pool8174.interbusiness.it
	[81.74.15.29])	by mx1.FreeBSD.org (Postfix) with ESMTP id 4DCCB43D41
	for <freebsd-net@freebsd.org>; Sat, 12 Mar 2005 15:15:05 +0000 (GMT)
	(envelope-from ml.diespammer@netfence.it)
Received: from soth.ventu (adsl-125-24.37-151.net24.it [151.37.24.125])
	(authenticated bits=128)
	by parrot.aev.net (8.13.1/8.13.1) with ESMTP id j2CFWqGL051854
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK)
	for <freebsd-net@freebsd.org>; Sat, 12 Mar 2005 16:33:04 +0100 (CET)
	(envelope-from ml.diespammer@netfence.it)
Received: from netfence.it (xanatar.ventu [10.1.2.6])
	(authenticated bits=0)
	by soth.ventu (8.13.3/8.13.1) with ESMTP id j2CFDcAV050799
	(version=TLSv1/SSLv3 cipher=DHE-RSA-AES256-SHA bits=256 verify=OK);
	Sat, 12 Mar 2005 16:13:38 +0100 (CET)
	(envelope-from ml.diespammer@netfence.it)
Message-ID: <423307B8.8020406@netfence.it>
Date: Sat, 12 Mar 2005 16:16:08 +0100
From: Andrea Venturoli <ml.diespammer@netfence.it>
Organization: NetFence
User-Agent: Mozilla/5.0 (OS/2; U; Warp 4.5; en-US; rv:1.6) Gecko/20040117
X-Accept-Language: it,en,fr,de
MIME-Version: 1.0
To: freebsd-net@freebsd.org
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
X-Scanned-By: MIMEDefang 2.45
Subject: ipfw verbosity
X-BeenThere: freebsd-net@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Networking and TCP/IP with FreeBSD <freebsd-net.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-net>
List-Post: <mailto:freebsd-net@freebsd.org>
List-Help: <mailto:freebsd-net-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-net>,
	<mailto:freebsd-net-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Sat, 12 Mar 2005 15:15:07 -0000

Hello.

I noticed that when I issue "sh /etc/rc.firewall" to reload firewall 
rules from a remote console, I get disconnected (as I would expect) and 
locked out!

The problems seems to be that "ipfw -f" prints: "command is /usr/local/...".

This is in /usr/src/sbin/ipfw/ipfw2.c:

fprintf(stderr, "command is %s\n", av[0]);


This line does not onor the "-q" flag which, if I understand correctly, 
was exactly meant to allow this kind of operations without console access.

Naturally, I can comment this line in my sources, but I was asking 
myself if this should be regarded as something to fix.


  bye & Thanks
	av.