Portál AbcLinuxu, 12. května 2025 12:52
Chain INPUT (policy DROP) target prot opt source destination ACCEPT all -- anywhere anywhere DROP all -- anywhere 255.255.255.255 DROP all -- anywhere 10.10.10.255 input_ext all -- anywhere anywhere DROP all -- anywhere anywhere Chain FORWARD (policy DROP) target prot opt source destination TCPMSS tcp -- anywhere anywhere tcp flags:SYN,RST/SYN TCPMSS clamp to PMTU Chain OUTPUT (policy ACCEPT) target prot opt source destination ACCEPT all -- anywhere anywhere DROP icmp -- anywhere anywhere icmp time-exceeded ACCEPT icmp -- anywhere anywhere icmp fragmentation-needed ACCEPT icmp -- anywhere anywhere icmp network-prohibited ACCEPT icmp -- anywhere anywhere icmp host-prohibited ACCEPT icmp -- anywhere anywhere icmp communication-prohibited DROP icmp -- anywhere anywhere icmp destination-unreachable ACCEPT all -- anywhere anywhere state NEW,RELATED,ESTABLISHED LOG all -- anywhere anywhere LOG level warning tcp-options ip-options prefix `SFW2-OUTPUT-ERROR ' Chain forward_dmz (0 references) target prot opt source destination Chain forward_ext (0 references) target prot opt source destination Chain forward_int (0 references) target prot opt source destination Chain input_dmz (0 references) target prot opt source destination ACCEPT icmp -- anywhere anywhere icmp echo-request ACCEPT icmp -- anywhere anywhere state RELATED,ESTABLISHED icmp echo-reply ACCEPT icmp -- anywhere anywhere state RELATED,ESTABLISHED icmp destination-unreachable ACCEPT icmp -- anywhere anywhere state RELATED,ESTABLISHED icmp time-exceeded ACCEPT icmp -- anywhere anywhere state RELATED,ESTABLISHED icmp parameter-problem ACCEPT icmp -- anywhere anywhere state RELATED,ESTABLISHED icmp timestamp-reply ACCEPT icmp -- anywhere anywhere state RELATED,ESTABLISHED icmp address-mask-reply DROP icmp -- anywhere anywhere reject_func tcp -- anywhere anywhere tcp dpt:ident flags:SYN,RST,ACK/SYN DROP tcp -- anywhere anywhere tcp dpt:ssh flags:SYN,RST,ACK/SYN DROP tcp -- anywhere anywhere tcp dpt:http flags:SYN,RST,ACK/SYN DROP tcp -- anywhere anywhere tcp dpt:https flags:SYN,RST,ACK/SYN ACCEPT tcp -- anywhere anywhere state RELATED,ESTABLISHED ACCEPT udp -- anywhere anywhere state RELATED,ESTABLISHED DROP udp -- anywhere anywhere udp dpt:ssh state NEW DROP udp -- anywhere anywhere udp dpt:http state NEW DROP udp -- anywhere anywhere udp dpt:https state NEW DROP udp -- anywhere anywhere udp dpt:1024 state NEW DROP all -- anywhere anywhere Chain input_ext (1 references) target prot opt source destination ACCEPT icmp -- anywhere anywhere icmp echo-request ACCEPT icmp -- anywhere anywhere state RELATED,ESTABLISHED icmp echo-reply ACCEPT icmp -- anywhere anywhere state RELATED,ESTABLISHED icmp destination-unreachable ACCEPT icmp -- anywhere anywhere state RELATED,ESTABLISHED icmp time-exceeded ACCEPT icmp -- anywhere anywhere state RELATED,ESTABLISHED icmp parameter-problem ACCEPT icmp -- anywhere anywhere state RELATED,ESTABLISHED icmp timestamp-reply ACCEPT icmp -- anywhere anywhere state RELATED,ESTABLISHED icmp address-mask-reply DROP icmp -- anywhere anywhere ACCEPT tcp -- anywhere anywhere state NEW,RELATED,ESTABLISHED tcp dpt:http ACCEPT tcp -- anywhere anywhere state NEW,RELATED,ESTABLISHED tcp dpt:https ACCEPT tcp -- anywhere anywhere state NEW,RELATED,ESTABLISHED tcp dpt:ssh reject_func tcp -- anywhere anywhere tcp dpt:ident flags:SYN,RST,ACK/SYN DROP tcp -- anywhere anywhere tcp dpt:ssh flags:SYN,RST,ACK/SYN DROP tcp -- anywhere anywhere tcp dpt:http flags:SYN,RST,ACK/SYN DROP tcp -- anywhere anywhere tcp dpt:https flags:SYN,RST,ACK/SYN ACCEPT tcp -- anywhere anywhere state RELATED,ESTABLISHED ACCEPT udp -- anywhere anywhere state RELATED,ESTABLISHED DROP udp -- anywhere anywhere udp dpt:ssh state NEW DROP udp -- anywhere anywhere udp dpt:http state NEW DROP udp -- anywhere anywhere udp dpt:https state NEW DROP udp -- anywhere anywhere udp dpt:1024 state NEW DROP all -- anywhere anywhere Chain input_int (0 references) target prot opt source destination ACCEPT icmp -- anywhere anywhere icmp echo-request ACCEPT icmp -- anywhere anywhere state RELATED,ESTABLISHED icmp echo-reply ACCEPT icmp -- anywhere anywhere state RELATED,ESTABLISHED icmp destination-unreachable ACCEPT icmp -- anywhere anywhere state RELATED,ESTABLISHED icmp time-exceeded ACCEPT icmp -- anywhere anywhere state RELATED,ESTABLISHED icmp parameter-problem ACCEPT icmp -- anywhere anywhere state RELATED,ESTABLISHED icmp timestamp-reply ACCEPT icmp -- anywhere anywhere state RELATED,ESTABLISHED icmp address-mask-reply DROP icmp -- anywhere anywhere reject_func tcp -- anywhere anywhere tcp dpt:ident flags:SYN,RST,ACK/SYN DROP tcp -- anywhere anywhere tcp dpt:ssh flags:SYN,RST,ACK/SYN DROP tcp -- anywhere anywhere tcp dpt:http flags:SYN,RST,ACK/SYN DROP tcp -- anywhere anywhere tcp dpt:https flags:SYN,RST,ACK/SYN ACCEPT tcp -- anywhere anywhere state RELATED,ESTABLISHED ACCEPT udp -- anywhere anywhere state RELATED,ESTABLISHED DROP udp -- anywhere anywhere udp dpt:ssh state NEW DROP udp -- anywhere anywhere udp dpt:http state NEW DROP udp -- anywhere anywhere udp dpt:https state NEW DROP udp -- anywhere anywhere udp dpt:1024 state NEW DROP all -- anywhere anywhere Chain reject_func (3 references) target prot opt source destination REJECT tcp -- anywhere anywhere reject-with tcp-reset REJECT udp -- anywhere anywhere reject-with icmp-port-unreachable REJECT all -- anywhere anywhere reject-with icmp-proto-unreachable
Každopádně o tom vím. Jinak je to všecko latin2.
FreeBSD? S tím si jenom hraju
Není to perfektní mít na stránce rám bez rámů?
No, na osobních stránkách si to klidně dovolit můžu (přinejmenším je to skvělé síto na cílovou skupinu návštěvníků ). Je fakt, že to je tak jediné místo kde si to můžu dovolit Každopádně trvat na stejném zobrazení úplně všude je IMHO cesta přímo do pekla.
Jinak na použití cp1250 na webu není AFAIK nic závadného, jenom se to pak musí tomu prohlížeči říct.
Jediny sposob ako tuto dilemu vyriesit, je dosiahnut riesenie, ktore je "dokonale" bezpecne a teda jeho zverejnenie neznizuje jeho ucinnost. Podobne ako sifrovacie algoritmy. Date ruku do ohna za to, ze tam nie je chyba? Myslim, ze toho kto polozil otazku netreba hned drsne karhat. V jeho situacii neexistuje "dobre" riesenie.
( hda aj hdc: drive_cmd: status=0x51 \
{ DriveReady SeekComplete Error }
drive_cmd: error=0x04 {DriveReady status Error}
blbosti pri kopirovani, nedalo sa formatovat raid0 aj 1 s xfs... kernel zacal slapat hlasky do aleluja...
pri upgrage na 2.6.8 disky priradil na scsi (sda,sdb, sdc,sdd) -> nesuhlasne zaznamy v fstab -> system nenabootuje..
Tiskni
Sdílej:
ISSN 1214-1267, (c) 1999-2007 Stickfish s.r.o.