From owner-freebsd-security  Wed Mar 29 11:16:47 2000
Delivered-To: freebsd-security@freebsd.org
Received: from grace.speakeasy.org (grace.speakeasy.org [216.254.0.2])
	by hub.freebsd.org (Postfix) with ESMTP id 0139137B63B
	for <freebsd-security@freebsd.org>; Wed, 29 Mar 2000 11:15:58 -0800 (PST)
	(envelope-from scotte@speakeasy.org)
Received: from localhost (scotte@localhost)
	by grace.speakeasy.org (8.10.0/8.10.0) with ESMTP id e2TJFnn04368
	for <freebsd-security@freebsd.org>; Wed, 29 Mar 2000 11:15:53 -0800
Date: Wed, 29 Mar 2000 11:15:48 -0800 (PST)
From: Scott <scotte@speakeasy.org>
To: freebsd-security@freebsd.org
Subject: Help securing fresh install from CD
Message-ID: <Pine.LNX.4.10.10003291114410.2508-100000@grace.speakeasy.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

Hello to all:
  
I have just ordered a new PC to install the January release of FreeBSD from CD.
I was wondering how secure FreeBSD is out-of-the-box,
and what additional steps I need to take in securing it.
  
My experience has been with securing Linux and Solaris boxes -
commenting out non-needed services in /etc/inetd.conf, looking for SUID and
GUID programs, installing SSH, etc.
  
What specifics are needed for FreeBSD, also considering this system will likely
double as a firewall.
  
Thanks.
  
Scott



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message