From owner-freebsd-questions@freebsd.org Sun Dec 9 18:14:13 2018 Return-Path: Delivered-To: freebsd-questions@mailman.ysv.freebsd.org Received: from mx1.freebsd.org (mx1.freebsd.org [IPv6:2610:1c1:1:606c::19:1]) by mailman.ysv.freebsd.org (Postfix) with ESMTP id 1183113295C1 for ; Sun, 9 Dec 2018 18:14:13 +0000 (UTC) (envelope-from jd1008@gmail.com) Received: from mail-it1-x12f.google.com (mail-it1-x12f.google.com [IPv6:2607:f8b0:4864:20::12f]) (using TLSv1.2 with cipher ECDHE-RSA-AES128-GCM-SHA256 (128/128 bits)) (Client CN "smtp.gmail.com", Issuer "Google Internet Authority G3" (verified OK)) by mx1.freebsd.org (Postfix) with ESMTPS id 5692D7492D for ; Sun, 9 Dec 2018 18:14:12 +0000 (UTC) (envelope-from jd1008@gmail.com) Received: by mail-it1-x12f.google.com with SMTP id b5so14572370iti.2 for ; Sun, 09 Dec 2018 10:14:12 -0800 (PST) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20161025; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-transfer-encoding; bh=k5bE3bE7xVTYQgcIqwPG76sv2W9oSWFX85Xqq8o0fzs=; b=bcPPziznIqGMkB2rZs7nrNY95Vz8BR01m/krlBIoQWe/NdusZRRJW8k27QzeQfMUMb L+/p7fVlwne46jdmU1VB7PvfaEIOVrR4dvn+G3/yptzHiLUW8yNoLTMwf7Cjaxt0QlLJ 3UhnOx1uEWcXyRe4/4dKkZ1U5OKyPrlJG1rfUoVcEdMAfxqUzBomaLkXowFiN8TABKg6 30PENqLIfjC/3mlespdeMupcrd002sbp4R1Hyx2/1Es7khFhNs98/WXv33RTZ8jOO1Sa uf20LysARptO++yDLQkmPEjFMkEQKpAOsuyNLNu+3o+LN1I6tXBlTddxwnUUAYnyQsVn raMQ== X-Google-DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=1e100.net; s=20161025; h=x-gm-message-state:message-id:date:from:user-agent:mime-version:to :subject:references:in-reply-to:content-transfer-encoding; bh=k5bE3bE7xVTYQgcIqwPG76sv2W9oSWFX85Xqq8o0fzs=; b=TV9qLAbHvE6OaMiRoO6bc+gPyiuiNDxCppETSf/vkXD10LELsby6SY/3+mu3pWLIDD +kepy/I6yV3wN8r4XV6ck/o0JuvFRZvppeVpsQrdgS+MQXjAnQ6ZrrsmNFGSXVvbs7kE tMuScO9Qa/bbcqPnHvVP9C/UGkOCRYMgDT6OJrDvRFNAuezPPhV5zjhzR3lE5YeV2KVM YzDn0NuOTXF5yq1303BQ1MpIVtU8bRKZfhA3apVOf+amxsjnkpKgpu8NGhNFWFI+6dJs AD47BbbpaBlyIH3NYJiF0iWgSE5hxK5kLwjIeJWOlFa265UmvOpQwY3fR6KmIsynSifj fgCw== X-Gm-Message-State: AA+aEWbui8YCZ5SXTGofnU9LxgGaKzzhnySJNjmPe8gbAuiVlAuZ0Msl RVT2xm1oTqp207bZqoqqNaHSGXLq X-Google-Smtp-Source: AFSGD/XbGWeQrkyKsZSxAsSUZak+E8hNT9okCoITFCCGO5Wfd1+3V/lLuJyHvuCbPQzTNwHnhsi27Q== X-Received: by 2002:a02:1b1d:: with SMTP id l29mr9005810jad.98.1544379251474; Sun, 09 Dec 2018 10:14:11 -0800 (PST) Received: from localhost.localdomain (50-243-4-3-static.hfc.comcastbusiness.net. [50.243.4.3]) by smtp.googlemail.com with ESMTPSA id r21sm5275791ita.27.2018.12.09.10.14.10 for (version=TLS1_2 cipher=ECDHE-RSA-AES128-GCM-SHA256 bits=128/128); Sun, 09 Dec 2018 10:14:10 -0800 (PST) Message-ID: <5C0D5BAB.5040404@gmail.com> Date: Sun, 09 Dec 2018 11:15:07 -0700 From: JD User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:31.0) Gecko/20100101 Thunderbird/31.7.0 MIME-Version: 1.0 To: freebsd-questions@freebsd.org Subject: Re: Change IPFW default to allow References: <5C0D594C.2060407@gmail.com> In-Reply-To: <5C0D594C.2060407@gmail.com> Content-Type: text/plain; charset=windows-1252; format=flowed Content-Transfer-Encoding: 7bit X-Rspamd-Queue-Id: 5692D7492D X-Spamd-Result: default: False [-5.97 / 15.00]; ARC_NA(0.00)[]; RCVD_VIA_SMTP_AUTH(0.00)[]; R_DKIM_ALLOW(-0.20)[gmail.com]; NEURAL_HAM_MEDIUM(-1.00)[-1.000,0]; FROM_HAS_DN(0.00)[]; R_SPF_ALLOW(-0.20)[+ip6:2607:f8b0:4000::/36]; FREEMAIL_FROM(0.00)[gmail.com]; MIME_GOOD(-0.10)[text/plain]; PREVIOUSLY_DELIVERED(0.00)[freebsd-questions@freebsd.org]; TO_DN_NONE(0.00)[]; RCPT_COUNT_ONE(0.00)[1]; NEURAL_HAM_LONG(-1.00)[-1.000,0]; RCVD_COUNT_THREE(0.00)[3]; IP_SCORE(-2.21)[ip: (-8.15), ipnet: 2607:f8b0::/32(-1.50), asn: 15169(-1.30), country: US(-0.09)]; TO_MATCH_ENVRCPT_ALL(0.00)[]; DKIM_TRACE(0.00)[gmail.com:+]; MX_GOOD(-0.01)[cached: alt3.gmail-smtp-in.l.google.com]; DMARC_POLICY_ALLOW(-0.50)[gmail.com,none]; RCVD_IN_DNSWL_NONE(0.00)[f.2.1.0.0.0.0.0.0.0.0.0.0.0.0.0.0.2.0.0.4.6.8.4.0.b.8.f.7.0.6.2.list.dnswl.org : 127.0.5.0]; NEURAL_HAM_SHORT(-0.75)[-0.754,0]; FROM_EQ_ENVFROM(0.00)[]; RCVD_TLS_LAST(0.00)[]; FREEMAIL_ENVFROM(0.00)[gmail.com]; ASN(0.00)[asn:15169, ipnet:2607:f8b0::/32, country:US]; MID_RHS_MATCH_FROM(0.00)[] X-Rspamd-Server: mx1.freebsd.org X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.29 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 09 Dec 2018 18:14:13 -0000 What a horrible (terribly insecure) suggestion for default operation of IPFW. On 12/09/2018 11:05 AM, Ernie Luzar wrote: > Is there a sysctl nib to reset the ipfw default from deny all to allow > all? Some thing that works without rebooting the system. > _______________________________________________ > freebsd-questions@freebsd.org mailing list > https://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to > "freebsd-questions-unsubscribe@freebsd.org" >