From owner-freebsd-questions Tue Nov 10 10:53:57 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id KAA29715 for freebsd-questions-outgoing; Tue, 10 Nov 1998 10:53:57 -0800 (PST) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from gamefish.pcola.gulf.net (gamefish.pcola.gulf.net [198.69.72.22]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id KAA29709 for ; Tue, 10 Nov 1998 10:53:55 -0800 (PST) (envelope-from psalzman@gamefish.pcola.gulf.net) Received: from localhost (psalzman@localhost) by gamefish.pcola.gulf.net (8.9.1/8.9.1) with ESMTP id SAA15310; Tue, 10 Nov 1998 18:53:26 GMT (envelope-from psalzman@gamefish.pcola.gulf.net) Date: Tue, 10 Nov 1998 18:53:26 +0000 (GMT) From: Phillip Salzman To: brianmcg cc: "questions@freebsd.org" Subject: Re: FreeBSD 2.2.7-RELEASE - validating security In-Reply-To: <19981110055405612-47f124e@high-voltage.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG > > The last aspect I'd like to test is security. I've got my test box up and > running as newtoy.com on the net presently, and next week I hope to make a > public posting offering $100 out of pocket to the first person who can get in > and retrieve either mail or news from my machine and tell me how they did it. If > the configuration stands up in that kind of a hostile environment, I would feel > confident that it would be secure against curious co-workers on our isolated > network. > You might want to write up a legal document about this. I doubt many people will try, if they can get into serious trouble. Also, install tcp_wrappers.. and disable any unnecessary ports to people you don't know (ie ipfw, hosts.allow). -- Phillip Salzman "one upon a drift of wine and blood.." To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message