Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 25 Apr 2002 01:41:32 -0400 (EDT)
From:      Peter Leftwich <Hostmaster@Video2Video.Com>
To:        VB <dreck@getnet.com>
Cc:        FreeBSD LIST <FreeBSD-Questions@FreeBSD.Org>
Subject:   Re: security patching
Message-ID:  <20020425013758.R8593-100000@earl-grey.cloud9.net>
In-Reply-To: <20020424183703.A365@sunny.localdomain>

next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 24 Apr 2002, VB wrote:
> I just installed 4.4 release, and cvsupped right away.  I want to port upgrade ***all and only*** those ports which pertain to security. How do I know which ports exist because they improve the integrity of my system versus which ports exist only because they add new, non-security-related, features?  (WHen I say "security" here, I am not talking about nmap and tripwire, I am talking about holes in my system.) Thank you, -VB

(erg, I wish I knew the difference between cvsupping and port upgrading
"right away!"  *grin*)

My advice would include ~ Subscribe to Security@FreeBSD.Org and keep a
tight system.  There shouldn't be any "holes" on your system;  Have you
found one or some, or do you suspect that some exist?  You can close a lot
of ports using /etc/inetd.conf and being wary about which daemons and
binaries happen to be running at any given time.  Hope this helps,

--
Peter Leftwich
President & Founder
Video2Video Services
Box 13692, La Jolla, CA, 92039 USA
+1-413-403-9555


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message




Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020425013758.R8593-100000>