From owner-freebsd-questions Mon Apr 8 8:37:34 2002 Delivered-To: freebsd-questions@freebsd.org Received: from cerebellum.za.net (cerebellum.za.net [196.34.172.103]) by hub.freebsd.org (Postfix) with ESMTP id DECC437B400 for ; Mon, 8 Apr 2002 08:37:10 -0700 (PDT) Received: from berthome (rdg-dial-196-2-33-214.mweb.co.za [196.2.33.214]) by cerebellum.za.net (8.11.6/8.11.3) with SMTP id g38FfUW00482; Mon, 8 Apr 2002 17:41:31 +0200 (SAST) (envelope-from ian@cerebellum.za.net) From: "Ian Barnes" To: "Mr Munkeh" Cc: "FreeBSD Questions" Subject: RE: FreeBSD Security Date: Mon, 8 Apr 2002 17:31:04 +0200 Message-ID: MIME-Version: 1.0 Content-Type: multipart/alternative; boundary="----=_NextPart_000_0026_01C1DF23.28E796C0" X-Priority: 3 (Normal) X-MSMail-Priority: Normal X-Mailer: Microsoft Outlook IMO, Build 9.0.2416 (9.0.2911.0) In-Reply-To: <20020408144125.8556.qmail@web14406.mail.yahoo.com> X-MimeOLE: Produced By Microsoft MimeOLE V6.00.2600.0000 Importance: Normal Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG This is a multi-part message in MIME format. ------=_NextPart_000_0026_01C1DF23.28E796C0 Content-Type: text/plain; charset="iso-8859-1" Content-Transfer-Encoding: 7bit Hi, you can close some of the above ports in your /etc/inetd.conf ... and the others wll be disabled in /etc/rc.conf (sshd for ex), go through the file /etc/defaults/rc.conf and then take out what you want. Ian ------------------------ BOFH - Mom's Pharmacies Emal: ian@cerebellum.za.net ------------------------ -----Original Message----- From: owner-freebsd-questions@FreeBSD.ORG [mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of Mr Munkeh Sent: 08 April 2002 04:41 To: freebsd-questions@FreeBSD.ORG Subject: FreeBSD Security hi im looking for some security help on FreeBSD, im using it as a workstation pc and not as a server so i dont want to be hosting any services to the outside world, im using FreeBSD 4.5-STABLE and have the following open ports: Port State Service 22/tcp open ssh 25/tcp open smtp 514/udp open syslog 587/tcp open submission 2504/tcp open unknown how do i close all none needed ports so other people cant access them and does anyone recommend a good firewall program thats in the ports system? i have used portsentry but had some errors, something about stealth, i had a look on google but didnt find any documentation that could help. If anyone knows how to get portsentry working or recommends another firewall please email me, thanks. -Munk3h ---------------------------------------------------------------------------- -- Do You Yahoo!? Get personalised at My Yahoo!. ------=_NextPart_000_0026_01C1DF23.28E796C0 Content-Type: text/html; charset="iso-8859-1" Content-Transfer-Encoding: quoted-printable
Hi,
 
you=20 can close some of the above ports in your /etc/inetd.conf ... = and the=20 others wll be disabled in /etc/rc.conf (sshd for ex), go through the = file=20 /etc/defaults/rc.conf and then take out what you = want.
 
Ian
 

------------------------
BOFH - Mom's = Pharmacies
Emal:=20 ian@cerebellum.za.net
------------------------

-----Original Message-----
From:=20 owner-freebsd-questions@FreeBSD.ORG=20 [mailto:owner-freebsd-questions@FreeBSD.ORG]On Behalf Of Mr=20 Munkeh
Sent: 08 April 2002 04:41
To:=20 freebsd-questions@FreeBSD.ORG
Subject: FreeBSD=20 Security

hi im looking for some security help on FreeBSD, im using it as a=20 workstation pc and not as a server so i dont want to be hosting any = services=20 to the outside world, im using FreeBSD 4.5-STABLE and have the = following open=20 ports:

Port      =20 State      =20 Service
22/tcp    =20 open       =20 = ssh           &nbs= p;        =20
25/tcp    =20 open       =20 = smtp           &nb= sp;       =20
514/udp    = open       =20 = syslog           &= nbsp;     =20
587/tcp    = open       =20 = submission          &nb= sp;  =20
2504/tcp   = open       =20 unknown

how do i close all none needed ports so other people cant access = them and=20 does anyone recommend a good firewall program thats in the ports = system? i=20 have used portsentry but had some errors, something about stealth, i = had a=20 look on google but didnt find any documentation that could help. If = anyone=20 knows how to get portsentry working or recommends another firewall = please=20 email me, thanks.

-Munk3h


Do You Yahoo!?
Get personalised at My Yahoo!.
------=_NextPart_000_0026_01C1DF23.28E796C0-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message