on firewalls

[adfellin]

Firewalls are a good thing. They keep my computer protected.

And then I break it. Twice. In the same day.


So...I get my server firewall figured out, I think. It's gonna work, and I'll be able to do all the stuff I want to do. And so I check it over one more time

root@hanzo# iptables -L

Looks good, but it's limited to 80chars, and not much info... but hey, there's a -F flag for 'full listing'

root@hanzo# iptables -F

hang...hang...shit. That should be -LF, -F flushes the tables, blocking my ssh session...and anything else I try.

So, I say whatever; at least it's secure and I go home later.

Turns out, my windoze box managed to pick up a bug somewhere. No problem; I'll just lock down its firewall and then run virusscan.

So...I reinstalled windows today...
Turns out that something managed to knock out McAfee (my guess is "me" trying to eradicate the virus), and it couldn't unlock the firewall.

Next time, I'm just gonna pull the plug to take it off the network.
Also, /etc/hosts.allow should always contain
ALL: 127.
Yeah, that was a fun headache.