Date: Wed, 11 Nov 1998 06:40:00 GMT
From: mike@sentex.net (Mike Tancsa)
To: bmcgroarty@high-voltage.com ("brianmcg")
Cc: questions@FreeBSD.ORG
Subject: Re: FreeBSD 2.2.7-RELEASE - validating security
Message-ID: <36493038.824493348@mail.sentex.net>
In-Reply-To: <19981110055405612-47f124e@high-voltage.com>
References: <19981110055405612-47f124e@high-voltage.com>
next in thread | previous in thread | raw e-mail | index | archive | help
>Before I do this, I'd like to know if there are any known security issues with >the Walnut Creek distribution of 2.2.7-RELEASE or the included ports of qpopper >and innd. Any pointers would be -very- much appreciated. And if NewToy survives >the test with all its little secrets intact, I'll gladly make that $100 a >contribution to the FreeBSD efforts instead. ;) Some free advices... You seem to be running the latest version of popper which is important.... As for INND, the one in the ports should be fine. Install things like tcp-wrappers and also ipfw. Deny all access by default, and then grant if possible access to specific hosts only for incoming connections. If you are going to administer your box remotely, use ssh to talk to the machine. There is pretty decent documentation about ipfw on the www.freebsd.org documenation pages. If you get stuck are unclear, post more questions to the list. ---Mike Mike Tancsa (mdtancsa@sentex.net) Sentex Communications Corp, Waterloo, Ontario, Canada To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?36493038.824493348>