I envision writing a wrapper script around {n,}pfctl which asks for confirmation upon detecting that you’re logged in via ssh through a specific port AND detecting that the new rules block that port.
VMware does this with its virtual networking. If a change takes it offline, it automatically rolls it back. It can be frustrating at times, but mostly its saved my ass.
I envision writing a wrapper script around {n,}pfctl which asks for confirmation upon detecting that you’re logged in via ssh through a specific port AND detecting that the new rules block that port.
VMware does this with its virtual networking. If a change takes it offline, it automatically rolls it back. It can be frustrating at times, but mostly its saved my ass.