From owner-freebsd-security  Thu Jun 10 13:46:45 1999
Delivered-To: freebsd-security@freebsd.org
Received: from proxy3.ba.best.com (proxy3.ba.best.com [206.184.139.14])
	by hub.freebsd.org (Postfix) with ESMTP id B055C14CFD
	for <freebsd-security@FreeBSD.ORG>; Thu, 10 Jun 1999 13:46:43 -0700 (PDT)
	(envelope-from GregoryC@stcinc.com)
Received: from stcinc.com (gw-covad768k-cognitivetech.ncal.verio.com [207.20.238.29] (may be forged))
	by proxy3.ba.best.com (8.9.3/8.9.2/best.out) with ESMTP id NAA01003;
	Thu, 10 Jun 1999 13:45:06 -0700 (PDT)
Message-ID: <375F7AF3.A10C68BD@stcinc.com>
Date: Thu, 10 Jun 1999 01:44:35 -0700
From: Gregory Carvalho <GregoryC@stcinc.com>
X-Mailer: Mozilla 4.08 [en] (X11; I; FreeBSD 3.1-RELEASE i386)
MIME-Version: 1.0
To: Bill Fumerola <billf@jade.chc-chimes.com>
Cc: "freebsd-security@FreeBSD.ORG" <freebsd-security@FreeBSD.ORG>
Subject: Re: ports and applications
References: <Pine.BSF.3.96.990610162501.1604C-100000@jade.chc-chimes.com>
Content-Type: text/plain; charset=us-ascii
Content-Transfer-Encoding: 7bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

I found this on www.freebsd.org:

The FreeBSD development team is as concerned about security as they are
about performance. FreeBSD includes kernel support for IP firewalling,
as well other services, such as IP proxy gateways.

Do you know the specialized server naming conventions (ie telnetd, ftpd,
etc for the normal operation servers)?

Bill Fumerola wrote:
> 
> On Thu, 10 Jun 1999, Gregory Carvalho wrote:
> 
> > Using ipfw I am allowing port 80 through the wall (could you imagine if
> > I denied the good people of Gotham their web fix). Suppose I deny
> > telnet, but some external server has its telnet server configured for
> > port 80. Is there a method to prevent the telnet session from operating?
> 
> This is how I telnetted into my machines at work on a daily basis at
> school.
> 
> As for stopping it? Hmmm.. you'd need some application level thing.
> 
> OR
> 
> Force your people through a proxy, which is the better choice.
> 
> - bill fumerola - billf@chc-chimes.com - BF1560 - computer horizons corp -
> - ph:(800) 252-2421 - bfumerol@computerhorizons.com - billf@FreeBSD.org  -

-- 
Cordially,
Gregory Carvalho		GregoryC@stcinc.com
Simplified Technology Company	http://www.stcinc.com
In God I Trust!


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message