From owner-freebsd-security@FreeBSD.ORG  Mon Mar  1 09:46:40 2004
Return-Path: <owner-freebsd-security@FreeBSD.ORG>
Delivered-To: freebsd-security@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 1599016A4CE
	for <freebsd-security@freebsd.org>;
	Mon,  1 Mar 2004 09:46:40 -0800 (PST)
Received: from buexe.b-5.de (buexe.b-5.de [80.148.32.30])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 37D1E43D1F
	for <freebsd-security@freebsd.org>;
	Mon,  1 Mar 2004 09:46:39 -0800 (PST)
	(envelope-from lupe@lupe-christoph.de)
Received: from antalya.lupe-christoph.de ([172.17.0.9])i21Hk3k09291;
	Mon, 1 Mar 2004 18:46:03 +0100
Received: from localhost (localhost [127.0.0.1])
	by antalya.lupe-christoph.de (Postfix) with ESMTP
	id 2705CB88C; Mon,  1 Mar 2004 18:45:58 +0100 (CET)
Received: from antalya.lupe-christoph.de ([127.0.0.1])
	by localhost (antalya [127.0.0.1]) (amavisd-new, port 10024)
	with LMTP id 07875-01-7; Mon, 1 Mar 2004 18:45:57 +0100 (CET)
Received: by antalya.lupe-christoph.de (Postfix, from userid 1000)
	id 95CA0B889; Mon,  1 Mar 2004 18:45:57 +0100 (CET)
Date: Mon, 1 Mar 2004 18:45:57 +0100
To: Konstantinos Fotiadis <bookman@oteglobe.net>
Message-ID: <20040301174557.GD2569@lupe-christoph.de>
References: <40436FB0.8040600@daleco.biz>
	<DNENIGNODKCOJCLIAEICCEMJDHAA.bookman@oteglobe.net>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <DNENIGNODKCOJCLIAEICCEMJDHAA.bookman@oteglobe.net>
User-Agent: Mutt/1.5.5.1+cvs20040105i
From: lupe@lupe-christoph.de (Lupe Christoph)
X-Virus-Scanned: by amavisd-new-20030616-p7 (Debian) at lupe-christoph.de
cc: freebsd-security@freebsd.org
Subject: Re: General Security Issues
X-BeenThere: freebsd-security@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: Security issues [members-only posting]
	<freebsd-security.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-security>
List-Post: <mailto:freebsd-security@freebsd.org>
List-Help: <mailto:freebsd-security-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-security>,
	<mailto:freebsd-security-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Mon, 01 Mar 2004 17:46:40 -0000

On Monday, 2004-03-01 at 19:21:28 +0200, Konstantinos Fotiadis wrote:

> Yeap, sendmail is down.
> However inetd.conf is up but it only starts the SSH daemon. Is this a
> problem-threat ?

No, but it is not needed, and you should turn off everything you do not
need. Run sshd in standalone mode. It's much faster that way, anyway,
because it computes a key on every start.

Put this in /etc/rc.conf:
  sshd_enable="YES"

> PS: Is this the right list for security questions or not ? Cause I got an
> e-mail from someone that this isn't....

It is *meant* for developers discussion security issues. But that rarely
happens, and there is no list for security-related discussions but lowly
users. So this list acquired that function. The majority does not
object, to that change, probably because they feel that this function is
needed. So do I. I have no time to read freebsd-questions, and I mostly
don't care for the discussions there.

I would be entirely in favour of freebsd-security-questions, but nobody
seems to be willing to start it.

(Ducks in anticipation of flames.)

Lupe Christoph
-- 
| lupe@lupe-christoph.de       |           http://www.lupe-christoph.de/ |
| "Violence is the resort of the violent" Lu Tze                         |
| "Thief of Time", Terry Pratchett                                       |