From owner-freebsd-questions Fri Feb 22 7: 3:53 2002 Delivered-To: freebsd-questions@freebsd.org Received: from mail3.ucles.org.uk (mail3.ucles.org.uk [192.149.119.13]) by hub.freebsd.org (Postfix) with ESMTP id 25C9737B400 for ; Fri, 22 Feb 2002 07:03:47 -0800 (PST) Received: from mail3.ucles.org.uk (unverified) by mail3.ucles.org.uk (Content Technologies SMTPRS 4.2.5) with ESMTP id for ; Fri, 22 Feb 2002 15:01:05 +0000 Received: by forest.nrl.navy.mil with Internet Mail Service (5.5.2653.19) id ; Fri, 22 Feb 2002 15:01:05 -0000 Message-ID: <0B0368CED76DD4118E1200D0B73E9B5D02AFD07C@MAIL1> From: Mike Dewhirst To: freebsd-questions@freebsd.org Subject: security and preventive measures Date: Fri, 22 Feb 2002 15:01:03 -0000 MIME-Version: 1.0 X-Mailer: Internet Mail Service (5.5.2653.19) Content-Type: multipart/alternative; boundary="----_=_NextPart_001_01C1BBB1.BF3FA7B0" Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG This message is in MIME format. Since your mail reader does not understand this format, some or all of this message may not be legible. ------_=_NextPart_001_01C1BBB1.BF3FA7B0 Content-Type: text/plain; charset="iso-8859-1" what good standard security tools are there out there that a security concious admin should install? I've heard of trip wire, but if I understand correctly, you need physical access to the box to have the database off-line? I'm mostly after break-in detection, comporomisation (like sshd, etc.) detection.. Thanks in advance for any advice. @ =********************************************************** If you are not the intended recipient, employee or agent responsible for delivering the message to the intended recipient, you are hereby notified that any dissemination or copying of this communication and its attachments is strictly prohibited. If you have received this communication and its attachments in error, please return the original message and attachments to the sender using the reply facility on e-mail. Internet communications are not secure and therefore the UCLES Group does not accept legal responsibility for the contents of this message. Any views or opinions presented are solely those of the author and do not necessarily represent those of the UCLES Group unless otherwise specifically stated. This footnote also confirms that this email message has been swept by MIMEsweeper for the presence of computer viruses although this does not guarantee that this email is virus free. **********************************************************= ------_=_NextPart_001_01C1BBB1.BF3FA7B0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable security and preventive measures

what good standard security tools are there out there tha= t a security concious admin should install?

I've heard of trip wire, but if I understand correctly, y= ou need physical access to the box to have the database off-line?

I'm mostly after break-in detection, comporomisation (lik= e sshd, etc.) detection..

Thanks in advance for any advice.



@



=3D**********************************************************

If you are not the intended recipient, employee or agent responsible for de= livering the message to the intended recipient, you are hereby notified tha= t any dissemination or copying of this communication and its attachments is= strictly prohibited.

If you have received this communication and its attachments in error, pleas= e return the original message and attachments to the sender using the reply= facility on e-mail.

Internet communications are not secure and therefore the UCLES Group does n= ot accept legal responsibility for the contents of this message. Any views= or opinions presented are solely those of the author and do not necessaril= y represent those of the UCLES Group unless otherwise specifically stated.<= BR>
This footnote also confirms that this email message has been swept by
MIMEsweeper for the presence of computer viruses although this does not gua= rantee that this email is virus free.

**********************************************************=3D
------_=_NextPart_001_01C1BBB1.BF3FA7B0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message