From owner-freebsd-security Wed Oct 27 17:26:16 1999 Delivered-To: freebsd-security@freebsd.org Received: from shell6.ba.best.com (shell6.ba.best.com [206.184.139.137]) by hub.freebsd.org (Postfix) with ESMTP id 5304914CC0; Wed, 27 Oct 1999 17:25:56 -0700 (PDT) (envelope-from jkb@shell6.ba.best.com) Received: (from jkb@localhost) by shell6.ba.best.com (8.9.3/8.9.2/best.sh) id RAA18573; Wed, 27 Oct 1999 17:25:34 -0700 (PDT) Message-ID: <19991027172534.A17924@best.com> Date: Wed, 27 Oct 1999 17:25:34 -0700 From: "Jan B. Koum " To: Brian Fundakowski Feldman , "Jean-Pierre H. Dumas" Cc: FreeBSD-Security@FreeBSD.ORG Subject: Re: Security tests References: <19991026143635.25359.rocketmail@web1003.mail.yahoo.com> Mime-Version: 1.0 Content-Type: text/plain; charset=us-ascii X-Mailer: Mutt 0.93.2i In-Reply-To: ; from Brian Fundakowski Feldman on Tue, Oct 26, 1999 at 01:06:21PM -0400 Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Tue, Oct 26, 1999 at 01:06:21PM -0400, Brian Fundakowski Feldman wrote: > On Tue, 26 Oct 1999, Jean-Pierre H. Dumas wrote: > > > Is there any other scanners or whatever that I can get > > and run, either from within the server, or from > > outside (I have a FreeBSD 3.2, Linux and Windows 95 > > machine on the Ethernet) > > The only way to really know if your system is "secure" is to thoroughly > audit and test it after having attempted to secure it. One tool you > may be interested in assisting you for checking local and remote security > is SATAN; be careful though, since it doesn't know how to do _everything_. In fact, it knows how to do nothing: http://www.hackernews.com/orig/whyvuln.html -- yan To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message