From owner-freebsd-questions@FreeBSD.ORG Mon Nov 17 16:42:21 2003 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 7997216A4CE for ; Mon, 17 Nov 2003 16:42:21 -0800 (PST) Received: from web13605.mail.yahoo.com (web13605.mail.yahoo.com [216.136.175.116]) by mx1.FreeBSD.org (Postfix) with SMTP id DD16943F3F for ; Mon, 17 Nov 2003 16:42:20 -0800 (PST) (envelope-from skyliner306@yahoo.com) Message-ID: <20031118004220.41827.qmail@web13605.mail.yahoo.com> Received: from [128.197.245.126] by web13605.mail.yahoo.com via HTTP; Mon, 17 Nov 2003 16:42:20 PST Date: Mon, 17 Nov 2003 16:42:20 -0800 (PST) From: Jon Cavalier To: freebsd-questions@FreeBSD.ORG MIME-Version: 1.0 Content-Type: text/plain; charset=us-ascii Subject: Beginner Security Question X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Tue, 18 Nov 2003 00:42:21 -0000 hello, after lots of research and configuration, i finally have a freebsd box with a comfortable custom interface, lots of multimedia bells and whistles, and shortcuts to all of my most-used applications. i'm still fumbling with text, in that i haven't found a way to cut and paste from one terminal window to another (i would welcome any suggestions as to how to implement this, if it's even possible). but for the most part i can do everything i could do with my win and mac machines before i started on this enlighting bsd journey, quite reliably. so now my question is, since i haven't really crossed the next bridge which is to familiarize myself fully with the security aspects of freebsd.. is this thing safe? what i mean is, how does the security of a stock freebsd 4.7 install and xfree86, using dhcp to access the internet compare with say a stock windows or mac computer? i'd like to start enjoying mozilla, irc, etc., but since i've used this machine for development only, i'm curious how it stands up. can i leave my machine online while i go to work, without someone easily popping in and planting a rootkit? i'm already aware of programs like tripwire, nessus, and nmap, which came to me highly recommended, but i'm just not there yet with the configuration. i'm also behind a basic $40 router firewall so i'm guessing that i probably don't have much more to worry about than most average pc users do (probably a lot LESS giving the incessant patching i've had to do with my xp box). i'd be grateful for any information or experiences you can share. thanks in advance, j __________________________________ Do you Yahoo!? Protect your identity with Yahoo! Mail AddressGuard http://antispam.yahoo.com/whatsnewfree