Security measure
First, the suricata yaml has a mrror embedded in opnsense so that it cant be changed
It will rewrite itself on boot
Question, can we implement something like that for the rest of the file system
Not just data, like a read only persistant raid for files that dont change
Either like a raid that checks and rewrites on boot
Or whatever it is the suricata yaml is doing
Linux mint has rync and snapshot to copy all files and store them
If they get to the boot files the snapshot is no good
But I like the idea
Also that rewrites directories like boot that have changed or if thats if
another file was put in there, and erase links to another file somewhere else
Its like putting it in the boot directory but hidden
I have tried the opnsense default reset, without success one instance
And the configuration saved settings is ok but doesnt help the files including boot
FreeBsd has rsync and snapshot but havnt tried putting it on opnsense yet
It wont matter if they get to the boot up files
Yes I know it will increase memory required,
I think it would be worth it, or an option
Hardened security
thanks
ZFS snapshots are available. Snapshots, once created, are read only. I do not understand what you are asking.
oh thanks
zfs snapshots
I will start researching that
Is it already in opnsense
something command line maybe
thanks
System > Snapshots in the UI in the current version.
thank you, I see it now
overlooked it
I see your posts on it
And I see the Utube video on it
looks good
I will start using it
Thank you again
I didnt know what a snapshot was till now