Skip site navigation (1)Skip section navigation (2)
Date:      Tue, 23 Apr 2002 00:19:52 -0700
From:      "Bryan K. Ogawa" <bko@idiom.com>
To:        Chris Hill <chris@monochrome.org>, questions@freebsd.org
Subject:   Re: Are you sure?
Message-ID:  <200204230719.g3N7Jq74063905@baz.fake.primenet.com>
In-Reply-To: <Pine.BSF.3.96.1020419032809.2103C-100000@localhost>
References:  <10192023110652990000> <Pine.BSF.3.96.1020419032809.2103C-100000@localhost>

next in thread | previous in thread | raw e-mail | index | archive | help
In localhost.freebsd.questions, you wrote:
> On Fri, 19 Apr 2002, Sunny Dale wrote:
>> Chris Hill wrote:
>> >On Fri, 19 Apr 2002, Mark Filipak wrote:

>> >>One more thing about my quest for the perfect gateway + firewall + www
>> >>server + mail + LAN server: GallantWEB has browser configurability --
>> >>that is, you create accounts and even apply patches through the
>> >>browser's (http) interface. Does plain-vanilla FBSD have such a
>> >>facility? 
>> >>
>> >
>> >There is a thing called WebMin which I *think* has this functionality; 
>> >never used it myself.
> 
>> is that really a good idea to install webmin on a firewall?
> 
> Maybe not, I don't know. As I said, I've never used it. I only mentioned

I don't know either.  If I were to do this, one thing I would strongly
consider doing would be binding the httpd that served webmin ONLY to
the internal interface.  Then, someone would have to break in from the
inside side of the firewall to break webmin.  Definitely not the only
thing I'd do, but something.

This is something those cheap NAT routers do, and it makes a lot of
sense.

-- 
bryan k ogawa  <bko@idiom.com>   http://www.idiom.com/~bko/

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200204230719.g3N7Jq74063905>