From owner-freebsd-newbies@FreeBSD.ORG Thu Feb 17 01:40:07 2005 Return-Path: Delivered-To: freebsd-newbies@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 46F3116A4CE for ; Thu, 17 Feb 2005 01:40:07 +0000 (GMT) Received: from rproxy.gmail.com (rproxy.gmail.com [64.233.170.201]) by mx1.FreeBSD.org (Postfix) with ESMTP id D38AB43D41 for ; Thu, 17 Feb 2005 01:40:06 +0000 (GMT) (envelope-from perikillo@gmail.com) Received: by rproxy.gmail.com with SMTP id a41so214578rng for ; Wed, 16 Feb 2005 17:40:06 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:references; b=R5KmLc5Hz2S15+sbU3keXKPscKU0k/nqqc49URIIkke5Q3G3npXZYn+cVD+kXxP9ZJVHC/d5bn0wPRKP87EKdQLPI8Mwh3RHlQzPlZ1NFGNbTeduAAUsPSbgLS1PK00su7JHAd4CGUCLcULSAJbHDmlVQJzPS957xVtNRBSkRS4= Received: by 10.38.90.32 with SMTP id n32mr120683rnb; Wed, 16 Feb 2005 17:40:06 -0800 (PST) Received: by 10.38.98.35 with HTTP; Wed, 16 Feb 2005 17:40:06 -0800 (PST) Message-ID: <51d7a5160502161740a9df44a@mail.gmail.com> Date: Wed, 16 Feb 2005 17:40:06 -0800 From: perikillo To: freebsd-newbies@freebsd.org In-Reply-To: <3aeecac6.cfb2dd90.81b5e00@ms07.mrf.mail.rcn.net> Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit References: <3aeecac6.cfb2dd90.81b5e00@ms07.mrf.mail.rcn.net> Subject: Re: Newbie Question; security logs X-BeenThere: freebsd-newbies@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: perikillo List-Id: Gathering place for new users List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Thu, 17 Feb 2005 01:40:07 -0000 I normally close all the listening ports, i like the docs of Dru Lavigne check this one: http://www.onlamp.com/pub/a/bsd/2002/08/08/FreeBSD_Basics.html Them i go to www.unixcircle.com there you can find one portscanner to test your machine, but right now they are rebuilding the site. If your machine dosent have any server running you need to have ports listening: root# sockstat -4 This show you all the ports listening. If you have some ports listening, check the services manpage and check how can you disable or listening only local information. There must be more sites where you can find portscanners to test your machine, if some else know others site i will like to know to :-). One good google search will good :-) Good luck!!! On Wed, 16 Feb 2005 16:05:51 -0500, crzdgns1@starpower.net wrote: > Hello, > > I have been checking my logs lately and find that a lot of access > attempts have been blocked. That's good. There are a ton of access > attempts, mostly from asia. I am the only user on my computer, it is > my home computer and I just wanted to try the whole open source > phenomenon. So far, I think IP firewall is blocking all unauthorized > attempts to login, but, well, I am a newcomer to freebsd/unix/internet > security and want to be sure I am doing everything safely. Some of > my log entries say "possible breakin attempt". That made me kind of > uncomfortable too. How do I evaluate whether or not my computer is > safe? > > Thanks > > Mark > _______________________________________________ > freebsd-newbies@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-newbies > To unsubscribe, send any mail to "freebsd-newbies-unsubscribe@freebsd.org" >