From owner-freebsd-stable@FreeBSD.ORG Wed Apr 20 13:32:05 2005 Return-Path: Delivered-To: freebsd-stable@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6CEAA16A4CE for ; Wed, 20 Apr 2005 13:32:05 +0000 (GMT) Received: from relay.frc-gateway.net (relay.frc-gateway.net [213.203.228.24]) by mx1.FreeBSD.org (Postfix) with ESMTP id 79D8A43D3F for ; Wed, 20 Apr 2005 13:32:04 +0000 (GMT) (envelope-from kellerpunk@gammlerforum.de) Received: from mlxlx002.frc-server.de (mlxlx001 [10.4.1.1]) by relay.frc-gateway.net (Postfix) with ESMTP id 6EA582AC1E2 for ; Wed, 20 Apr 2005 15:30:52 +0200 (CEST) X-Spam-Status: No, hits=-0.5 required=5.0 X-Virus-Scanned: by Framecom.net Received: from [217.187.217.199] (account kellerpunk@gammlerforum.de HELO [192.168.50.188]) by mlxlx002.frc-server.de (CommuniGate Pro SMTP 4.2.5) with ESMTP id 5526121 for freebsd-stable@freebsd.org; Wed, 20 Apr 2005 15:30:47 +0200 Message-ID: <42665983.1040508@gammlerforum.de> Date: Wed, 20 Apr 2005 15:30:43 +0200 From: Sebastian Krings - Kellerpunk User-Agent: Mozilla Thunderbird 1.0.2 (Windows/20050317) X-Accept-Language: de-DE, de, en-us, en MIME-Version: 1.0 Cc: freebsd-stable@freebsd.org References: <426447F8.5090209@charter.net> <200504191317.j3JDH76H001458@drjekyll.mkbuelow.net> <20050419120053.6ad17df1.wmoran@potentialtech.com> <42655B8E.5020603@mac.com> <42655DD9.7020300@t-hosting.hu> <20050419200510.GA38661@uws1.starlofashions.com> <52607941c4729226852cde5d42f7085e@ish.com.au> In-Reply-To: <52607941c4729226852cde5d42f7085e@ish.com.au> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: 7bit Subject: Re: Remote firewall changes, Was: Newbie Question About System Update X-BeenThere: freebsd-stable@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: Production branch of FreeBSD source code List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 20 Apr 2005 13:32:05 -0000 Aristedes Maniatis schrieb: > On 20/04/2005, at 6:05 AM, Scott Robbins wrote: > >> (And of course the obvious--DO NOT shut down the sshd daemon.) :) >> >> Ok, everyone who has NEVER ever made that mistake (or locked themself >> out with a firewall rule, accidentally putting it into effect before >> testing) raise their hand. :) > > > Yes, that would be me. But someone taught me a great trick...the "at" > command. So, just before you blow away your access with changes to > ipfw, do this: > > echo "ipfw add 1 pass all from any to any" at now +10 minutes > > Then if all goes OK, use atq to remove the queue item. If not, wait 10 > minutes... > > > Ari Maniatis > > > > --------------------------> > ish group > http://www.ish.com.au > Level 1, 30 Wilson Street Newtown 2042 Australia > phone +61 2 9550 5001 fax +61 2 9550 4001 > PGP fingerprint 08 57 20 4B 80 69 59 E2 A9 BF 2D 48 C2 20 0C C8 > > _______________________________________________ > freebsd-stable@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-stable > To unsubscribe, send any mail to "freebsd-stable-unsubscribe@freebsd.org" May I nominate you for some kind of award? That's just great! *out for damaging his server* Cheers Sebastian