| |
| |
| |
|
Page: 1 2 3 4 5 6 7 8 9 10 11 12
Comments:
<0> no dmz
<1> cool
<2> iptables works just find when you set up a set of rules that basically says "****em, drop everything"
<1> i am in the process of moving mine from linux/iptables to OBSD/pf
<0> ya then you crash it and i laff at you not having internet
<1> i am amazed at the simplistic rules
<0> magikman : cool :)
<2> its worked fine for 2 years now *shrug*
<0> if you count my 5 redirect rules and no comments or variables i have 17 rules total
<2> ill admit, thats pretty simplistic
<1> that would equate to ~25-30 iptables rules
<1> :p
<3> But is it art?
<4> Damn I missed the Logitech distro.
<5> hehe
<1> main(){int j=-1; char t[]="?.\n";while(t[j]!='\n'){putchar(t[++j]-'\05');}return 0;}
<1> who can tell me what that will display without compiling it? :D
<1> : /
<2> hah
<2> i count 14
<1> it will output 14?
<2> no
<2> 6 accept rules, 5 forward, and 3 output
<2> im tellin ya
<2> ****em, drop everything
<2> it doesnt take much of a rule to tell your firewall to not let **** in
<1> if you had to block 20 IP addresses, all in different subnets, how many rules would that take?
<2> good question
<1> for pf, it would take one.
<2> id have to read through the man page and figure it out
<2> iptables aint easy....im not even going to TRY and make it sound otherwise
<2> its just secure
<1> hehe
<2> trust me, i still have a lot to learn in that area
<2> **** ive been introduced to the real nasty dirt that is OpenVPN this week, and its totally fried me
<1> http://www.sentia.org/downloads/pf.conf.html
<1> ( just an example )
<1> how did you like OpenVPN?
<2> its a bitch to set up, but NOTHING is getting into that connection without the source admin and the destination admin knowing about it
<2> and whats cool is that the source and destination, while both being protected from the rest of the net, are also protected against each other
<2> it seems to trust NOBODY
<1> that is a good thing
<2> yes it is
<2> like to establish a connection, you first generate a key. from that key, you generate a certificate request (which has a fingerprint of the key). the other end has to sign the request, and return a certificate to the originating server.
<2> the key plus the signed cert request is what authenticates the connection
<2> the other end cant decrypt the key at all. no way, no how.
<2> as well as you never being able to touch his ****
<1> : /
<2> well at least not what he doesnt want you to mess with, that is
<0> pf > iptables
<0> iptables runs on an kernel more insecure than bsd
<2> does pf require gui?
<1> no
<0> no, silly
<2> ok
<2> somehow, i had the impression it did
<0> Chris-- : www.openbsd.org
<1> http://www.openbsd.org/faq/pf/index.html
<2> man ive REALLY been wanting to set up an OBSD box lately
<2> just to check it out and **** with it
<2> unfortunately, i have no extra workstations to set the box up at right now
<1> it isn't something i would run for a desktop, but for a firewall/router, it kicks ***
<1> .
<2> i need to get ahold of some UPS's and KVM cables first
<2> hah
<2> dude i dont do desktops much
<2> i have a bunch of servers here doing various ****
<1> i have some KVM cables i would love to sell you :)
<2> if theyll plug into my kvm switch, we should talk
<1> they are the expensive belkin cables
<1> they are very nice
<1> i think i have 6 of them
<1> make me an offer :)
<2> are they the single serial end or are they the ones that split into 3 connectors at both ends?
<2> 6 you say?!
<2> thats damned close to what i need actually
<1> they are seperate cables
<1> the ps/2 and vga cables are sperate
<2> while we're at it, who has a 24 port switch they dont want around
<2> magikman: ddduuudddeee
<2> thats what i need
<1> you can get them
<1> they have been in a box for about 6 months now
<2> **** **** ****
<2> where are you (geographically)
<1> Virginia
<1> i have two KVM switches i will sell too :p
<1> want a computer too?
<1> http://www.compusa.com/products/product_info.asp?product_code=332903&pfp=BROWSE
<3> http://b.oooom.net/yq
<2> how many ports on the switches?
<1> they are the ones that i have
<2> and what kinda proc in the box?
<1> with the audio cables too
<1> pentium 4 1.8
<1> one switch has 4 cables, the other 2?
<4> Hey kutzooi! http://www.kutlovesthemancock.com/gay.jpg
<1> i am not sure about the 2 ports... i would have to look
<2> sorry, i have no use for switches that small
<2> the box we can negotiate on
<2> i could use a server with some balls
<2> i need something i can run a few websites off of
<2> or maybe an outside debian mirror
<2> who knows
<1> http://usa.asus.com/products4.aspx?l1=1&l2=3&l3=0&model=84&modelmenu=1
<3> http://b.oooom.net/yr
<2> but damn, intel hurts
<1> that's what it is
<2> yea
<1> it has a 1.8GHz P4, 256MB RAM, and a 160GB WD HD.
<1> :)
<1> it can be yours!
<2> yikes
<2> not much ram, but i should have some
<2> the drive is good though
<1> or would you rather have this: http://www.chp***.com/~magikman/comp.jpg http://www.chp***.com/~magikman/comp1.jpg
<2> **** that last url is the box?!
<2> nice
<1> that is mine
<1> that one isn't for sale... unless you are talking about the right amount of money ;)
<1> then, most anything is for sale. :p
<2> hah
<2> love the supermicro uber-cases
<1> it has a supermicro board too
<1> heh
<2> my server rack doesnt have room for that....it would have to lay on its side like it is now and i just dont have that much space
<2> **** i still have to buy 2 more shelves for the rack as it is
<2> HAH
<2> dual xeon board
<2> niec
<2> *nice
<1> up to 32GB of memory
<1> heh
<2> id say you should hold on to that one
<2> that and i really dislike working on those...
<2> theyre a large pain in the ***
<1> why is that?
<2> have you ever taken one of those heat sinks off?
<1> i built that thing
<2> they ****
<1> they aren't that bad
<2> the clips that hold the heat sinks on make me wanna stab myself
<2> but ill admit, for intels, theyre damn decent boxes
<2> though i totally dig the compactness of that little P4 box
<1> you need it
<1> i don't
<2> heh
<1> i am using it right now simply because the computer i normally use for a firewall/router is down for a little while
<2> the only problem (and reason that i dont have more **** than i already do) is money
<1> i think that is everyone :)
<6> ha ha
Return to
#linux-noob
or
Go to some related
logs:
mercury kvt600x-l beep
#politics
dell digital media feature
#politics
cheeze itz boxes
martin brodeur's sister-in-law
#freebsd
#politics
#windows
#beginner
|
|
