From owner-freebsd-security@FreeBSD.ORG  Thu Dec  1 09:26:43 2005
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
X-Original-To: freebsd-security@freebsd.org
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 8B17C16A41F
	for <freebsd-security@freebsd.org>;
	Thu,  1 Dec 2005 09:26:43 +0000 (GMT)
	(envelope-from lists-freebsd@silverwraith.com)
Received: from keylime.silverwraith.com (keylime.silverwraith.com
	[69.55.228.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 47FFB43D5C
	for <freebsd-security@freebsd.org>;
	Thu,  1 Dec 2005 09:26:43 +0000 (GMT)
	(envelope-from lists-freebsd@silverwraith.com)
Received: from avleen by keylime.silverwraith.com with local (Exim 4.41
	(FreeBSD)) id 1EhkiB-000JgB-2F
	for freebsd-security@freebsd.org; Thu, 01 Dec 2005 01:26:43 -0800
Date: Thu, 1 Dec 2005 01:26:43 -0800
From: Avleen Vig <lists-freebsd@silverwraith.com>
To: freebsd-security@freebsd.org
Message-ID: <20051201092642.GK17354@silverwraith.com>
References: <52765.202.65.114.229.1133424317.squirrel@webmail.usd.ac.id>
	<438E7375.5030100@open-networks.net>
	<63365.202.65.114.229.1133440742.squirrel@webmail.usd.ac.id>
	<438EA922.9030905@open-networks.net>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <438EA922.9030905@open-networks.net>
User-Agent: mutt-ng/devel-r535 (FreeBSD)
Subject: Re: exploiting kernel
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: "Security issues \[members-only posting\]"
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>, 
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Thu, 01 Dec 2005 09:26:43 -0000

On Thu, Dec 01, 2005 at 05:41:22PM +1000, Timothy Smith wrote:
> for security, generally the kernel and base is not the biggest concern, it is ports.
> read this section on keeping your ports up to date
> http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/ports-using.html
> 
> and this info is on securing the system in general
> http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/security-advisories.html
> http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/securing-freebsd.html
> 
> if you have already been broken into, some details on what happened
> will help us advise you on what they probably used.

I think he's asking "How do I break into a freebsd box?".
I'm very wary of answering such questions, even when someone is asking
for the pupose of securing a box.