On Oct 13, 2006, at 8:31 AM, Gilles Chehade wrote:
Alexander Belikov a icrit :
Dear Community,
I want to fix a problem on one of my servers. The problem is 2 admins
1 server :( Both of us have a root access to it. It was a will of our
Top Managment..
Sometimes my 'partner' disables a part of pf rules to get a better
download rate for himself. I want to add some code to pfctl which
would add all important rules to pf. In such way, if that rules
wouldn't be in pf.conf they would BE in pf.
I'm asking for an example of code to add my RDR rule.
Maybe, it looks like a silly game, but it isn't. Alternative ways are
discharge myself, kill second admin and so on... I want to fix this
_problem_ in my way.
Thanks in advance,
I'm sure i'll recieve a solution
sysjail him and make it look like he is on the host system :-)
If you really love the server you'll let it go. There's a story in a
famous book about 2 possible mothers fighting over a baby. Maybe
you've heard this story before? In the end the one that cared the
most let it go, rather than have the baby cut in half ;)
What does the server do for you? If it does a lot then maybe find
another box, install openbsd 4.0 on it, and take some of the
responsibilities off of the server you and your alleged partner are
struggling over. Then you each get your own server, and even better,
you get to use your shiny new openbsd 4 cd's!
If it's a firewall, then find another box and carp them. This way if
this other admin screws up one firewall, yours will be ready to step
in and take over (and work better, if you do things right). I'm sure
management would love a redundant firewall solution, right? Who
wouldn't?
Good luck in any case,
Mike H
