From owner-freebsd-security  Fri Feb 18  7:22:19 2000
Delivered-To: freebsd-security@freebsd.org
Received: from blackhelicopters.org (geburah.blackhelicopters.org [209.69.178.18])
	by hub.freebsd.org (Postfix) with ESMTP id A598B37B957
	for <security@freebsd.org>; Fri, 18 Feb 2000 07:22:15 -0800 (PST)
	(envelope-from mwlucas@blackhelicopters.org)
Received: (from mwlucas@localhost)
	by blackhelicopters.org (8.9.3/8.9.3) id KAA08579;
	Fri, 18 Feb 2000 10:22:13 -0500 (EST)
	(envelope-from mwlucas)
From: Michael Lucas <mwlucas@blackhelicopters.org>
Message-Id: <200002181522.KAA08579@blackhelicopters.org>
Subject: Request for Article Review
To: advocacy@freesd.org, security@freebsd.org
Date: Fri, 18 Feb 2000 10:22:12 -0500 (EST)
X-Mailer: ELM [version 2.4ME+ PL43 (25)]
MIME-Version: 1.0
Content-Type: text/plain; charset=US-ASCII
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

[apologies for cross-posting, but -advocacy has the interest and
-security has the expertise... followups to me, please.]

I've written another article for Sys Admin on "Building a FreeBSD
firewall."  I would appreciate any technical review people would care
to give before I submit it.

The disclaimer: This article is about twice as long as my usual, and I
had half the usual time to write it in.  While I don't *think* I've
missed anything, increasing writing speed 400% can't be good.

The article covers:

Hardening your FreeBSD install 
IPFilter (ipfw changed to be stateful in 4.0, so I chose ipf; it's
basically identical across 3.x and 4.x)
service redirection and transparent proxies
application proxies

Thanks,
Michael


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message