Date: Sat, 19 Aug 2000 11:37:08 +0000 From: rob <europax@home.com> To: "questions@FreeBSD.ORG" <questions@FreeBSD.ORG> Subject: newbie security Message-ID: <399E7164.76B5E9B3@home.com>
next in thread | raw e-mail | index | archive | help
I have a linux box here that I spent a great deal of time securing. I am wondering if the same strategies apply to FreeBSD. Here is what I did for Linux and now for FreeBSD: 1. On linux, turned off all uneeded services. Did the same for FreeBSD. Kept smpt for qmail, and enabled internal identd, all else off. 2. On linux and FreeBSD, not using a firewall. Figured with all of the services off, I don't need it. 3. Installed logcheck and portsentry on both. 4. On Linux, made /tmp /var /home / all seperate partitions. Should BSD use seperate slices for these? I followed the recommendations and just have /var on FreeBSD as a seperate slice. 5. Mounted /tmp /var /home / nosetuid on Linux. Haven't done anything similar with BSD. 6. Set all security related, and log files to 600 root.root on Linux. Yet to do on FreeBSD, but sounds like a good idea. Thanks, Rob. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?399E7164.76B5E9B3>