Date: Mon, 18 Aug 2008 17:32:27 -0400 From: "Brian Miller" <bmiller@lablaw.org> To: "Roland Smith" <rsmith@xs4all.nl> Cc: freebsd-questions@freebsd.org Subject: RE: Auto Mount USB Message-ID: <7FB5330A2962844C9F95E25CEFA021956F4D95@labex.labnet.lablaw.org> In-Reply-To: <20080818211457.GA13027@slackbox.xs4all.nl> References: <7FB5330A2962844C9F95E25CEFA021956F4D90@labex.labnet.lablaw.org> <20080818201051.GA10978@slackbox.xs4all.nl> <7FB5330A2962844C9F95E25CEFA021956F4D93@labex.labnet.lablaw.org> <20080818211457.GA13027@slackbox.xs4all.nl>
next in thread | previous in thread | raw e-mail | index | archive | help
I you are correct and the thought had crossed my mind. In the event of a system failure it would be nice to have one hanging there in the system. I might add that these systems are in locked server rooms.=20 I had planned on doing over the wire backups 1 per day over our wide area back to our main office and wanted to minimize bandwidth usage. My thoughts were to back up the config and logs once daily over the wire and to the USB drive every 3 hours or so. However, I am aware that the drives have limited writes and they would need to be replace every once and a while. -----Original Message----- From: Roland Smith [mailto:rsmith@xs4all.nl]=20 Sent: Monday, August 18, 2008 5:15 PM To: Brian Miller Cc: freebsd-questions@freebsd.org Subject: Re: Auto Mount USB On Mon, Aug 18, 2008 at 04:21:41PM -0400, Brian Miller wrote: > Not a big deal. I will be sure to just mount and dismount the USB drives > manually. They are just there to store a config and log backup on the > firewall. If an attacker has gained access to the system, anything mounted locally should be deemed unreliable. > I am doing this so that if I have a failure or attack or some > other type of crash. I will be able to check out the latest config and > logs. I suppose that you know that you can use syslogd to log to another machine? And you could use logger(1) to read config files into the log. That would be much safer because it's a one-way street. You can log to another machine, but you cannot delete from the logfile on the other machine, unless it's compromised as well. Roland --=20 R.F.Smith http://www.xs4all.nl/~rsmith/ [plain text _non-HTML_ PGP/GnuPG encrypted/signed email much appreciated] pgp: 1A2B 477F 9970 BA3C 2914 B7CE 1277 EFB0 C321 A725 (KeyID: C321A725)
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?7FB5330A2962844C9F95E25CEFA021956F4D95>