Submit Hint Search The Forums LinksStatsPollsHeadlinesRSS
14,000 hints and counting!


Click here to return to the 'Would this be useful for guardian' hint
The following comments are owned by whoever posted them. This site is not responsible for what they say.
Would this be useful for guardian
Authored by: heavyboots on May 08, '06 05:53:21PM
Here's an interesting question. Does this allow you to add more "number space" at the beginning of the 10.4 firewall rules? Or is the 10.4 rule incrementation not editable?

Currently, they start at 02000 and increment by 10 for each rule. As someone who would eventually like to integrate guardian into a 10.4 machine someday, I'm wondering if there's a way to create a bigger gap at some point in that ruleset (ie probably right after the "02000 allow ip from any to any via lo*" rule.

(Guardian, which is a script that runs with snort, is a way to block access to ssh password guessing scripts in situations where you must allow access by username, btw.)

[ Reply to This | # ]