From mboxrd@z Thu Jan 1 00:00:00 1970 Received: from pigeon.gentoo.org ([208.92.234.80] helo=lists.gentoo.org) by finch.gentoo.org with esmtp (Exim 4.60) (envelope-from ) id 1Phg1h-0007xC-7i for garchives@archives.gentoo.org; Tue, 25 Jan 2011 10:21:36 +0000 Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id ECDD8E0B30; Tue, 25 Jan 2011 10:19:49 +0000 (UTC) Received: from mail.digimed.co.uk (82-69-83-178.dsl.in-addr.zen.co.uk [82.69.83.178]) by pigeon.gentoo.org (Postfix) with ESMTP id 8743CE0B30 for ; Tue, 25 Jan 2011 10:19:49 +0000 (UTC) Received: from digimed.co.uk (grunthos.digimed.co.uk [192.168.1.4]) (using TLSv1 with cipher DHE-RSA-AES128-SHA (128/128 bits)) (No client certificate requested) by mail.digimed.co.uk (Postfix) with ESMTPSA id 598FA62859E for ; Tue, 25 Jan 2011 10:19:48 +0000 (GMT) Date: Tue, 25 Jan 2011 10:19:40 +0000 From: Neil Bothwick To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] modifying iptables: how can I prevent locking me out? Message-ID: <20110125101940.5325f280@digimed.co.uk> In-Reply-To: <201101250028.33198.alan.mckinnon@gmail.com> References: <4D3DC94F.4020904@gmail.com> <20110124215057.014e9e60@digimed.co.uk> <201101250028.33198.alan.mckinnon@gmail.com> Organization: Digital Media Production X-Mailer: Claws Mail 3.7.8cvs44 (GTK+ 2.22.1; i686-pc-linux-gnu) X-GPG-Fingerprint: 7260 0F33 97EC 2F1E 7667 FE37 BA6E 1A97 4375 1903 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org Mime-Version: 1.0 Content-Type: multipart/signed; micalg=PGP-SHA1; boundary="Sig_/PLdYpnHovPxh8ESWSw0=cnF"; protocol="application/pgp-signature" X-Archives-Salt: X-Archives-Hash: 4b5465001e1c079575a179c14f9b68e8 --Sig_/PLdYpnHovPxh8ESWSw0=cnF Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: quoted-printable On Tue, 25 Jan 2011 00:28:32 +0200, Alan McKinnon wrote: > Maybe I'm just paranoid, or maybe I just screwed up myself too many > times, but I'd feel safer with cron for this. Cancelling it when done > is equally easy whether cron or at But to cancel the cron job, you'd have to edit crontab, then you'd have to remember to restore the crontab before trying another rule. I'd use a script to Backup working rules Set up at (or cron if you prefer extra work) to restore old rules Load new rules Otherwise, the one time you forget to schedule a return to the old rules in the one time you lock yourself out. --=20 Neil Bothwick I have seen things you lusers would not believe. I've seen Sun monitors on fire off the side of the multimedia lab. I've seen NTU lights glitter in the dark near the Mail Gate. All these things will be lost in time, like the root partition last week. Time to die. --Sig_/PLdYpnHovPxh8ESWSw0=cnF Content-Type: application/pgp-signature; name=signature.asc Content-Disposition: attachment; filename=signature.asc -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.17 (GNU/Linux) iEYEARECAAYFAk0+o8IACgkQum4al0N1GQP9PQCfSGnyr3n+VUsp4peAG5p2+Rfs ArUAoMwcqX8HsGlVhF8LTd/Rz5iL8Q/a =giHS -----END PGP SIGNATURE----- --Sig_/PLdYpnHovPxh8ESWSw0=cnF--