Date: Wed, 16 Feb 2005 18:09:05 +0300 From: Denis Peplin <den@FreeBSD.org> To: freebsd-doc@FreeBSD.org Subject: [PATCH] handbook/firewalls: rewrite warning Message-ID: <42136211.9080908@FreeBSD.org>
next in thread | raw e-mail | index | archive | help
This is a multi-part message in MIME format.
--------------030708020409070301050504
Content-Type: text/plain; charset=us-ascii; format=flowed
Content-Transfer-Encoding: 7bit
Hello!
Some parts of handbook's firewall chapter still
can mislead some users.
Patch (attached) mostly obtained from security
chapter, rev. 1.229
I will apply this small patch to current firewalls
sections after 2 days, if no objections.
Thanks!
--------------030708020409070301050504
Content-Type: text/plain;
name="firewalls.diff"
Content-Transfer-Encoding: 7bit
Content-Disposition: inline;
filename="firewalls.diff"
Index: firewalls/chapter.sgml
===================================================================
RCS file: /home/dcvs/doc/en_US.ISO8859-1/books/handbook/firewalls/chapter.sgml,v
retrieving revision 1.34
diff -u -r1.34 chapter.sgml
--- firewalls/chapter.sgml 15 Feb 2005 15:09:42 -0000 1.34
+++ firewalls/chapter.sgml 16 Feb 2005 14:59:10 -0000
@@ -950,13 +950,12 @@
sets and is the only rule set type covered herein.</para>
<warning>
- <para>When working with the firewall rules, always,
- always do it on the console of the system running the
- firewall or you can end up locking your self out.
- Alternatively, you may setup a cronjob to flush the
- firewall rules say every five minutes.
- This may not be acceptable for a corporate firewall,
- but should be ok for a home firewall.</para>
+ <para>When working with the firewall rules, be
+ <emphasis>very careful</emphasis>. Some configurations
+ <emphasis>will lock yourself out</emphasis> of the server.
+ To be on the safe side, you may wish to consider performing
+ the initial firewall configuration from the local console
+ rather than via <application>ssh</application>.</para>
</warning>
</sect2>
--------------030708020409070301050504--
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?42136211.9080908>