Am 19.10.2012 14:17, schrieb Hristo Benev: Hello,
> It is not complicated ;) > And actually that was one of my initial variants. > > As for security concerns. > remote system is well secured (actually it is sort of appliance). > I can use sudoers file and allow the user to execute scrip that has changes > hardcoded... just IP will be variable (or even can be detected via SSH_CLIENT > variable). > And in newer SSH implementation user can be chrooted :) > > Adding daemon that periodically checks is adding additional delay... If you check it with cron periodically, you can turn it down to once each minute. But if you put a script into the cron entry that is executed once a minute, you can have the script repeat the real "check process" behind it like this check_updates sleep 3 check_updates sleep 3 ... and fill up until you complete the minute until the script is triggered again. This is a dirty variant, but leaves no delay (near to nothing). > I was thinking to add a web server that is pinged and executes a script, but > found SSH will be more secure implementation. Does this represent a suitable cost/benefit ratio? And remember, you need privileged rights for modifying the shorewall config files. That's nothing I would like to see my apache doing... -- Florian Piekert, PMP [email protected] =========================================================================== Note: this message was send by me *only* if the eMail message contains a correct pgp signature corresponding to my address at [email protected]. Do you need my PGP public key? Check out http://www.floppy.org or send me an email with the subject "send pgp public key" to this address of mine.Thx!
signature.asc
Description: OpenPGP digital signature
------------------------------------------------------------------------------ Everyone hates slow websites. So do we. Make your web apps faster with AppDynamics Download AppDynamics Lite for free today: http://p.sf.net/sfu/appdyn_sfd2d_oct
_______________________________________________ Shorewall-users mailing list [email protected] https://lists.sourceforge.net/lists/listinfo/shorewall-users
