Date: Fri, 26 Oct 2001 08:20:46 -0400 From: Joseph <jolt@nicholasofmyra.org> To: "Patrick O'Reilly" <patrick@mip.co.za> Cc: Eric Lam <elam101083@earthlink.net>, freebsd-questions@FreeBSD.ORG Subject: Re: IPFW Rules Help Message-ID: <3BD9551E.4050505@nicholasofmyra.org> References: <NDBBIMKICMDGDMNOOCAIEEEHDMAA.patrick@mip.co.za>
next in thread | previous in thread | raw e-mail | index | archive | help
Patrick O'Reilly wrote: > >Eric, if this server is not actually a firewall, but an FTP/HTTP/SMB/SSH >server, then I would personally not worry about ipfw, but be sure to >configure each of those services correctly, and make sure that the box DOES >NOT RESPOND to anything else. > The advice you gave is good, however, I, personally, still prefer to configure the firewall rules. They help to catch configuration errors/changes made by you and other authorized personnel. They help to assure that a trojan cannot suddenly open a hole. They also allow you to log suspicious network activity. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?3BD9551E.4050505>