Date: Thu, 25 Apr 2002 01:41:32 -0400 (EDT) From: Peter Leftwich <Hostmaster@Video2Video.Com> To: VB <dreck@getnet.com> Cc: FreeBSD LIST <FreeBSD-Questions@FreeBSD.Org> Subject: Re: security patching Message-ID: <20020425013758.R8593-100000@earl-grey.cloud9.net> In-Reply-To: <20020424183703.A365@sunny.localdomain>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 24 Apr 2002, VB wrote: > I just installed 4.4 release, and cvsupped right away. I want to port upgrade ***all and only*** those ports which pertain to security. How do I know which ports exist because they improve the integrity of my system versus which ports exist only because they add new, non-security-related, features? (WHen I say "security" here, I am not talking about nmap and tripwire, I am talking about holes in my system.) Thank you, -VB (erg, I wish I knew the difference between cvsupping and port upgrading "right away!" *grin*) My advice would include ~ Subscribe to Security@FreeBSD.Org and keep a tight system. There shouldn't be any "holes" on your system; Have you found one or some, or do you suspect that some exist? You can close a lot of ports using /etc/inetd.conf and being wary about which daemons and binaries happen to be running at any given time. Hope this helps, -- Peter Leftwich President & Founder Video2Video Services Box 13692, La Jolla, CA, 92039 USA +1-413-403-9555 To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020425013758.R8593-100000>