From owner-freebsd-questions Sun Nov 11 3:13:30 2001 Delivered-To: freebsd-questions@freebsd.org Received: from mail.XtremeDev.com (xtremedev.com [216.241.38.65]) by hub.freebsd.org (Postfix) with ESMTP id AB35C37B421 for ; Sun, 11 Nov 2001 03:13:23 -0800 (PST) Received: from xtremedev.com (xtremedev.com [216.241.38.65]) by mail.XtremeDev.com (Postfix) with ESMTP id E8A0070607; Sun, 11 Nov 2001 04:13:21 -0700 (MST) Date: Sun, 11 Nov 2001 04:13:21 -0700 (MST) From: FreeBSD user To: Lord Raiden Cc: freebsd-questions@FreeBSD.ORG Subject: Re: Security trial for BSD firewall box. In-Reply-To: <4.2.0.58.20011110111843.00949460@pop.netzero.net> Message-ID: <20011111040355.D42368-100000@Amber.XtremeDev.com> MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG I know almost nothing about hacking. But what little I do know, know that firewalls only play a small part in securing a server. You can have the most well written firewall rule set that allows only smtp, and it can still be hacked. Hackers root a system not through the firewall rules, but through exploitable daemons. Run an smtp daemon that is unpatched and rootable, and you're leaving yourself wide open. I'd worry more about your choice of smtp daemons and your vigilance as a system admin in keeping up with the necessary patches than about firewall rules. Or any other service daemon's you plan on providing. My 2 cents. On Sat, 10 Nov 2001, Lord Raiden wrote: > Hi all. In a couple of weeks I'm going to be putting a new firewall box > online complete with SMTP server, as soon as I get the time. The box is > completed and all I need to do is install the SMTP service and give it a > trial run. Anyone know of a good way to test this box to see if it's setup > correctly? Like maybe a group that can hammer it and see if I left any > holes in the protection? I think I got tripwire and the ip filtering and > all that setup right, but I'm not totally deathly sure. Anyone got any > ideas? I don't want to leave the SMTP server vulnerable to spammers > either. So I'm totally game to any ideas you guys have. I'm using FreeBSD > 4.3 stable as my platform. > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-questions" in the body of the message > > > To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message