On 08/07/2017 08:09 AM, WolfSec-Support wrote: > Well, Jim, you are completely right - and as paranoid as I am normally :) > > Here it is for INTERNAL use only - simply colleagues etc should not see > all old data
Which is my point. Without a wipe+reload, inevitably _something_ is going to get left behind, especially with package data. Since it is staying internal, a reinstall is sufficient and not a full disk wipe. > And - to be honest: > in general it would be really helpful to HELP/ANSWER a question, instead > to decline it by default. > The people have also thought about their idea before - if it foits not > YOUR requirements, may it fits THEIRS ;) I focus on the goal rather than the methods. If someone asks "How can I do X so I get Y", I answer how to reach "Y" in the best way, because often "X" is not the most efficient or correct method. I am answering the question of how to reach your goal in the safest and most secure way possible. The specific method you're inquiring about is not going to achieve your goal and could easily result in unintended behavior or information exposure. Technically, yes, what you want to do could be achieved by a script, via ssh commands, or by any number of methods, but all of those techniques suffer from the same problems. I'd rather you have the most stable, secure, and reliable experience possible, and following your suggested methods would most likely not have that result. Reinstalling does not take long, and in most cases all you have to do is press Enter a few times in a row. If all of your hardware is identical with identical drives you could even take a disk image of a stock install and write that out any number of ways, but that would still be slower than a reinstall in most cases. Jim _______________________________________________ pfSense mailing list https://lists.pfsense.org/mailman/listinfo/list Support the project with Gold! https://pfsense.org/gold
