Date: Fri, 29 Apr 2005 08:17:48 -0400 From: "Michael Scheidell" <scheidell@secnap.net> To: "Neo-Vortex" <root@Neo-Vortex.net>, "Siddhartha Jain" <sid@netmagicsolutions.com> Cc: freebsd-security@freebsd.org Subject: RE: IPFW disconnections and resets Message-ID: <B3BCAF4246A8A84983A80DAB50FE72423D1D3A@secnap2.secnap.com>
index | next in thread | raw e-mail
> > I use that all the time, maybe 1 out of 100 times it will kill > a ssh session (only one that has irssi open cause of the time > updating it kills it, i have it set to update every second > though, so normally it'd be like 1 out of 500 or so) and even > if it does, it still finishes loading the ruleset anyway so > you can just ssh straight back in I used sysctl -a net.inet.ip.fw.enable=0 && firewall.sh && net.inet.ip.fw.enable=1 && sleep 60 && reboot and I would hit a ^c to stop the sleep and reboot if I didn't wack the firewall rules. The reboot would put it back to rc.conf firewall Never got disconnected. Only window of vulnerability was while loading new firewall rules. Yours is safer.home | help
Want to link to this message? Use this
URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?B3BCAF4246A8A84983A80DAB50FE72423D1D3A>