From owner-freebsd-questions  Sun Nov 11  3:13:30 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from mail.XtremeDev.com (xtremedev.com [216.241.38.65])
	by hub.freebsd.org (Postfix) with ESMTP id AB35C37B421
	for <freebsd-questions@FreeBSD.ORG>; Sun, 11 Nov 2001 03:13:23 -0800 (PST)
Received: from xtremedev.com (xtremedev.com [216.241.38.65])
	by mail.XtremeDev.com (Postfix) with ESMTP
	id E8A0070607; Sun, 11 Nov 2001 04:13:21 -0700 (MST)
Date: Sun, 11 Nov 2001 04:13:21 -0700 (MST)
From: FreeBSD user <freebsd@XtremeDev.com>
To: Lord Raiden <raiden23@netzero.net>
Cc: freebsd-questions@FreeBSD.ORG
Subject: Re: Security trial for BSD firewall box.
In-Reply-To: <4.2.0.58.20011110111843.00949460@pop.netzero.net>
Message-ID: <20011111040355.D42368-100000@Amber.XtremeDev.com>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

I know almost nothing about hacking. But what little I do know, know that
firewalls only play a small part in securing a server. You can have the
most well written firewall rule set that allows only smtp, and it can
still be hacked. Hackers root a system not through the firewall rules, but
through exploitable daemons. Run an smtp daemon that is unpatched and
rootable, and you're leaving yourself wide open. I'd worry more about your
choice of smtp daemons and your vigilance as a system admin in keeping up
with the necessary patches than about firewall rules. Or any other service
daemon's you plan on providing.

My 2 cents.



On Sat, 10 Nov 2001, Lord Raiden wrote:

> 	Hi all.  In a couple of weeks I'm going to be putting a new firewall box
> online complete with SMTP server, as soon as I get the time.  The box is
> completed and all I need to do is install the SMTP service and give it a
> trial run.  Anyone know of a good way to test this box to see if it's setup
> correctly?  Like maybe a group that can hammer it and see if I left any
> holes in the protection?  I think I got tripwire and the ip filtering and
> all that setup right, but I'm not totally deathly sure.  Anyone got any
> ideas?  I don't want to leave the SMTP server vulnerable to spammers
> either.  So I'm totally game to any ideas you guys have.  I'm using FreeBSD
> 4.3 stable as my platform.
>
> To Unsubscribe: send mail to majordomo@FreeBSD.org
> with "unsubscribe freebsd-questions" in the body of the message
>
>
>


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message