Reply With QuoteHey ashcrow, ready for some OpenBSD advocating
For those of you who use FreeBSD pre-4.6, be forewarned that 4.6 is fscked when it comes to firewalling and NAT. Not sure what the FreeBSD boys did, but they sure messed up this time.
Also, you must install wrapper if you want to launch X as non-root. That seems like one hell of a restrictive security measure!!! Like, would anyone want to run X all the time as root?
I used to enjoy FreeBSD but these latest "improvements" in 4.6 make me wonder what the boys are smoking.
You've been warned.
KORREKTION: You can get firewalling to work with IPFW but NAT seems broken...or, at least, it's so different from previous versions -- and there's no documentation -- that making it work is like doing something with Winblows. Bad FreeBSD.... :-X
Hey ashcrow, ready for some OpenBSD advocating
No shit! I am glad you two got me onto OpenBSD instead of FreeBSD
[quote author=Schotty link=board=10;threadid=4001;start=0#39854 date=1025563136]
No shit! I am glad you two got me onto OpenBSD instead of FreeBSD
[/quote]
Heh! Theo screams at the developpers when the -CURRENT cvs tree does not build!
WOW!
Thats hardcore! I suppose thats why there's been no remote hole in ... 5 Years!
[quote author=Coral Sea link=board=10;threadid=4001;start=0#39828 date=1025547726]
Also, you must install wrapper if you want to launch X as non-root. That seems like one hell of a restrictive security measure!!! Like, would anyone want to run X all the time as root?
[/quote]
You must've been used to installing XFree86 4.x by packages, because 'wrapper' has been needed since 4.0 came out. I use to compile it to start XFree as non-root on FreeBSD 4.4. So that's not new to 4.6.
[quote author=GnuVince link=board=10;threadid=4001;start=0#39852 date=1025562780]
Hey ashcrow, ready for some OpenBSD advocating
[/quote]
Thats what FreeBSD is all about! Getting people to use OpenBSD! ;D
[quote author=Kint link=board=10;threadid=4001;start=0#39859 date=1025565241]
[quote author=Coral Sea link=board=10;threadid=4001;start=0#39828 date=1025547726]
Also, you must install wrapper if you want to launch X as non-root. That seems like one hell of a restrictive security measure!!! Like, would anyone want to run X all the time as root?
[/quote]
You must've been used to installing XFree86 4.x by packages, because 'wrapper' has been needed since 4.0 came out. I use to compile it to start XFree as non-root on FreeBSD 4.4. So that's not new to 4.6.
[/quote]
Funny, never noticed it before with 3.3.6 or 4.X. Anyway, NAT is still broken, which is what I'm really pissed with... >
I haven't had any problem natting, except that it's slow, but I think that's my mom's computer. Keep us informed on the situation if you will.
In my case, when I try to compile IPDIVERT into the kernel, the system hangs during the boot process. So, you could say that it might not be NAT proper that's broken, but IPDIVERT is.
For now, I'm running Mandy with an IPTABLES firewall/router that works just fine. Might have to dispense with FreeBSD or else give OpenBSD a whirl. Or, maybe I'll put Libranet or Slack on the partition where FreeBSD is now.
Posting Permissions
Bookmarks