From owner-freebsd-questions@FreeBSD.ORG Mon Aug 18 21:15:01 2008 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2001:4f8:fff6::34]) by hub.freebsd.org (Postfix) with ESMTP id 90DF31065678 for ; Mon, 18 Aug 2008 21:15:01 +0000 (UTC) (envelope-from rsmith@xs4all.nl) Received: from smtp-vbr3.xs4all.nl (smtp-vbr3.xs4all.nl [194.109.24.23]) by mx1.freebsd.org (Postfix) with ESMTP id 1C6E68FC1A for ; Mon, 18 Aug 2008 21:15:00 +0000 (UTC) (envelope-from rsmith@xs4all.nl) Received: from slackbox.xs4all.nl (slackbox.xs4all.nl [213.84.242.160]) by smtp-vbr3.xs4all.nl (8.13.8/8.13.8) with ESMTP id m7ILEwRQ004910; Mon, 18 Aug 2008 23:14:58 +0200 (CEST) (envelope-from rsmith@xs4all.nl) Received: by slackbox.xs4all.nl (Postfix, from userid 1001) id D2ACDBA8F; Mon, 18 Aug 2008 23:14:57 +0200 (CEST) Date: Mon, 18 Aug 2008 23:14:57 +0200 From: Roland Smith To: Brian Miller Message-ID: <20080818211457.GA13027@slackbox.xs4all.nl> References: <7FB5330A2962844C9F95E25CEFA021956F4D90@labex.labnet.lablaw.org> <20080818201051.GA10978@slackbox.xs4all.nl> <7FB5330A2962844C9F95E25CEFA021956F4D93@labex.labnet.lablaw.org> MIME-Version: 1.0 Content-Type: multipart/signed; micalg=pgp-sha1; protocol="application/pgp-signature"; boundary="Q68bSM7Ycu6FN28Q" Content-Disposition: inline In-Reply-To: <7FB5330A2962844C9F95E25CEFA021956F4D93@labex.labnet.lablaw.org> X-GPG-Fingerprint: 1A2B 477F 9970 BA3C 2914 B7CE 1277 EFB0 C321 A725 X-GPG-Key: http://www.xs4all.nl/~rsmith/pubkey.txt X-GPG-Notice: If this message is not signed, don't assume I sent it! User-Agent: Mutt/1.5.18 (2008-05-17) X-Virus-Scanned: by XS4ALL Virus Scanner Cc: freebsd-questions@freebsd.org Subject: Re: Auto Mount USB X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 18 Aug 2008 21:15:01 -0000 --Q68bSM7Ycu6FN28Q Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, Aug 18, 2008 at 04:21:41PM -0400, Brian Miller wrote: > Not a big deal. I will be sure to just mount and dismount the USB drives > manually. They are just there to store a config and log backup on the > firewall. If an attacker has gained access to the system, anything mounted locally should be deemed unreliable. > I am doing this so that if I have a failure or attack or some > other type of crash. I will be able to check out the latest config and > logs. I suppose that you know that you can use syslogd to log to another machine? And you could use logger(1) to read config files into the log. That would be much safer because it's a one-way street. You can log to another machine, but you cannot delete from the logfile on the other machine, unless it's compromised as well. Roland --=20 R.F.Smith http://www.xs4all.nl/~rsmith/ [plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated] pgp: 1A2B 477F 9970 BA3C 2914 B7CE 1277 EFB0 C321 A725 (KeyID: C321A725) --Q68bSM7Ycu6FN28Q Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v2.0.9 (FreeBSD) iEYEARECAAYFAkip5lEACgkQEnfvsMMhpyV1MwCfWbLWVWnst8C+FOlEROA3+8xT HpsAnjU6ND3gMVWJjbdbJcUdsv7k8eun =zn80 -----END PGP SIGNATURE----- --Q68bSM7Ycu6FN28Q--