From owner-freebsd-questions Sun Mar 4 14:22:48 2001 Delivered-To: freebsd-questions@freebsd.org Received: from femail1.sdc1.sfba.home.com (femail1.sdc1.sfba.home.com [24.0.95.81]) by hub.freebsd.org (Postfix) with ESMTP id CDDF337B718 for ; Sun, 4 Mar 2001 14:22:45 -0800 (PST) (envelope-from vvortex1@home.com) Received: from C1052484A ([24.5.25.254]) by femail1.sdc1.sfba.home.com (InterMail vM.4.01.03.00 201-229-121) with SMTP id <20010304222217.BUUR2502.femail1.sdc1.sfba.home.com@C1052484A>; Sun, 4 Mar 2001 14:22:17 -0800 Message-ID: <001101c0a4f9$afc96fc0$0100a8c0@mshome.net> From: "David Schultz" To: "Rick Knebel" , References: Subject: Re: Security Date: Sun, 4 Mar 2001 14:23:06 -0800 MIME-Version: 1.0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit X-Priority: 3 X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook Express 5.50.4522.1200 X-MimeOLE: Produced By Microsoft MimeOLE V5.50.4522.1200 Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG > I want to run a little home server with mail,web,ftp and telnet servers > running. > > This is rather vague , but can you do this and still be secure ? If you log in to your computer remotely via unencrypted POP3, FTP, or telnet, someone may be able to intercept your password. However, you can still run sendmail on your home computer and safely check mail through your login account. You can login via SSH instead of telnet and use SFTP (or regular FTP through an SSH tunnel) to avert security issues on those fronts. Can you do all that and still keep your system reasonably secure? That depends on your definition of "secure." Most of the common servers that folks run today have been around for a while, but bugs and security glitches are occasionally found. It's a good idea to keep up to date to avert potential problems. I wouldn't be overly concerned about security beyond taking basic precautions, although others will disagree with me. As a home user, you're in a relatively low-risk category--- corporate and government servers are much more interesting to vandals. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message