From owner-freebsd-questions  Tue Nov  2  9:10:40 1999
Delivered-To: freebsd-questions@freebsd.org
Received: from server.computeralt.com (server.computeralt.com [207.41.29.10])
	by hub.freebsd.org (Postfix) with ESMTP id 520E114BC9
	for <freebsd-questions@FreeBSD.ORG>; Tue,  2 Nov 1999 09:10:31 -0800 (PST)
	(envelope-from scott@computeralt.com)
Received: from scott (scott.computeralt.com [207.41.29.100])
	by server.computeralt.com (8.9.1/8.9.1) with ESMTP id MAA00609
	for <freebsd-questions@FreeBSD.ORG>; Tue, 2 Nov 1999 12:10:27 -0500 (EST)
Message-Id: <4.2.1.19991102120616.00af55d0@mail.computeralt.com>
X-Sender: scott@mail.computeralt.com
X-Mailer: QUALCOMM Windows Eudora Pro Version 4.2.1 
Date: Tue, 02 Nov 1999 12:10:33 -0500
To: FreeBSD Questions <freebsd-questions@FreeBSD.ORG>
From: "Scott I. Remick" <scott@computeralt.com>
Subject: Deletable default accounts?
Mime-Version: 1.0
Content-Type: text/plain; charset="us-ascii"; format=flowed
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

I'm setting up a new 3.3 system to be a dual-homed router/firewall.  It 
will only be running ssh2, ipfw, etc.  What default accounts can I safely 
remove to tighten security?

toor, daemon, operator, bin, tty, kmem, games, news, man, bind, ucp, xten, 
pop, nobody

I'm thinking that probably toor, games, news, bind, ucp, and pop can 
go.  I'm also thinking daemon, operator, and man cannot.  But I'm not 
certain.  Can someone enlighten me about all of them?  Thanks.


-----------------------
Scott I. Remick			scott@computeralt.com
Network and Information		(802)388-7545 ext. 236
Systems Manager			FAX:(802)388-3697
Computer Alternatives, Inc.		http://www.computeralt.com



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message