From owner-freebsd-security  Tue Jul 17 22:47:46 2001
Delivered-To: freebsd-security@freebsd.org
Received: from sbtx.tmn.ru (sbtx.tmn.ru [212.76.160.49])
	by hub.freebsd.org (Postfix) with ESMTP id C1FD537B405
	for <security@FreeBSD.ORG>; Tue, 17 Jul 2001 22:47:40 -0700 (PDT)
	(envelope-from serg@sbtx.tmn.ru)
Received: from sv.tech.sibitex.tmn.ru (sv.tech.sibitex.tmn.ru [212.76.160.59])
	by sbtx.tmn.ru (8.11.3/8.11.3) with ESMTP id f6I5lcc81806;
	Wed, 18 Jul 2001 11:47:38 +0600 (YEKST)
	(envelope-from serg@sbtx.tmn.ru)
Received: (from serg@localhost)
	by sv.tech.sibitex.tmn.ru (8.11.4/8.11.4) id f6I5lba54089;
	Wed, 18 Jul 2001 11:47:37 +0600 (YEKST)
	(envelope-from serg)
Date: Wed, 18 Jul 2001 11:47:37 +0600
From: "Sergey N. Voronkov" <serg@tmn.ru>
To: Nick Maschenko <mnvhome@mail.ru>
Cc: security@FreeBSD.ORG
Subject: Re: Fw: Re: A question about FreeBSD security
Message-ID: <20010718114737.A53934@sv.tech.sibitex.tmn.ru>
References: <E15MYbJ-000P1q-00@f4.mail.ru>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
User-Agent: Mutt/1.2.5i
In-Reply-To: <E15MYbJ-000P1q-00@f4.mail.ru>; from mnvhome@mail.ru on Tue, Jul 17, 2001 at 09:25:37PM +0400
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

On Tue, Jul 17, 2001 at 09:25:37PM +0400, Nick Maschenko wrote:
> 
> -----Original Message-----
> From: Kris Kennaway <kris@obsecurity.org>
> To: Nick Maschenko <mnvhome@mail.ru>
> Date: Tue, 17 Jul 2001 09:45:04 -0700
> Subject: Re: A question about FreeBSD security
> 
> > Ask on security@freebsd.org
> > 
> > On Tue, Jul 17, 2001 at 03:38:16PM +0400, Nick Maschenko wrote:
> > > Hello Kris.
> > > Sorry if my question is too stupid. :-)
> > > If it is possible for you, would you like to advice me following:
> > > 1) some URLs about packet filtering in FreeBSD (ipfw),
> > >    examples of  good  ipfw firewalls are preffered.

I prefer to use IPF 'cose of it's stateful filtering.

man security
man 4 ipf
man 5 ipf
man ipfw
more /etc/rc.firewall
cd /usr/src/contrib/ipfilter/rules; for arg in *; do more $arg; done;

> > > 2) does FreeBSD kernel realize defence against some DoS
> > >    attacks like smurf, broadcast, some types of
> > >    flooding?

Yes. See above.

> > > I know and i use Linux 2.4.x branch with iptables, which can prevent 
> some DoS attacks by using it's built-in mechanism. Does FreeBSD do 
> somethging like this? For example, i saw how "she" :-) rejects
> > > a burst of RST/ACK packets while NMap scanning (stealth scan). If you 
> do not want to answer in details, please advice me some URL(s) where i can 
> read about this myself.
> > > Best regards. Nick.

http://www.freebsdzine.org/
http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/security.html

Bye!

Serg N. Voronkov.

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message