portsnap in cron and firewall

Albert Shih Albert.Shih at obspm.fr
Fri Sep 5 15:43:46 UTC 2008

 Le 05/09/2008 à 11:33:59-0400, Sean Cavanaugh a écrit
> > Date: Fri, 5 Sep 2008 16:14:02 +0200> From: Albert.Shih at obspm.fr>
> > To: freebsd-questions at freebsd.org> Subject: portsnap in cron and
> > firewall> > Hi all> > I've some servers for internal use. On those
> > servers I have some pf (or> ipfw) rule to deny any connection from
> > inside to outside. > > Long time ago when ports tree is update with
> > cvs, I'm using something like> > pf command to open inside -->
> > outside connection> cvsup > portupgrade --fetch-only --all> pf
> > command to close inside --> outside connection> > But now with
> > portsnap cron (that's mean random sleep) I don't known when> the
> > system try to connect outside. > > Do you have any idea how can I
> > make my update using portsnap (I known I can> use cvsup) in a
> > crontab with my network config ? >
> "portsnap cron" just randomizes the time to download unlike "portsnap
> fetch" which says to do it right now. cron was added to help randomize
> the time so everyone syncing at midnight UTC arent all hitting at
> exact same time.

Yes I known. That's why I'm asking you how can I make portsnap through the
cron and opening firewall just before he going to make the connection.

Of course I can hack the portsnap to make he don't try to see if it's fork
by cron or not. But it's not a good idea IMHO, what's happen if all person
do that ? 


Albert SHIH
SIO batiment 15
Observatoire de Paris Meudon
5 Place Jules Janssen
92195 Meudon Cedex
Heure local/Local time:
Ven 5 sep 2008 17:41:30 CEST

More information about the freebsd-questions mailing list