From owner-freebsd-questions@FreeBSD.ORG Mon Sep 4 21:55:25 2006 Return-Path: X-Original-To: freebsd-questions@freebsd.org Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id AC3A816A4DA for ; Mon, 4 Sep 2006 21:55:25 +0000 (UTC) (envelope-from whatawonderfulworldweliveintoo@yahoo.com) Received: from web58409.mail.re3.yahoo.com (web58409.mail.re3.yahoo.com [68.142.236.177]) by mx1.FreeBSD.org (Postfix) with SMTP id 1F98C43D49 for ; Mon, 4 Sep 2006 21:55:25 +0000 (GMT) (envelope-from whatawonderfulworldweliveintoo@yahoo.com) Received: (qmail 98693 invoked by uid 60001); 4 Sep 2006 21:38:09 -0000 DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.com; h=Message-ID:Received:Date:From:Subject:To:In-Reply-To:MIME-Version:Content-Type:Content-Transfer-Encoding; b=4PQYUuihDpiFnSXfpnUFShnZillrXmbQabZZ/2krDZhLG3AFyOFBAWQkld84NMSO0K+ncPfCQhYoP+oM09obLHFZV4uG+J6TZGZKMUN9t94EQShe056b3bs/NN+XsefP7RAy4twG+gCKRm7JI5GIsQz5lXwHXQnnF2aI7OBKM+4= ; Message-ID: <20060904213809.98691.qmail@web58409.mail.re3.yahoo.com> Received: from [69.19.14.27] by web58409.mail.re3.yahoo.com via HTTP; Mon, 04 Sep 2006 14:38:09 PDT Date: Mon, 4 Sep 2006 14:38:09 -0700 (PDT) From: Ted Johnson To: "Travis H." , freebsd-questions@freebsd.org In-Reply-To: MIME-Version: 1.0 Content-Type: text/plain; charset=iso-8859-1 Content-Transfer-Encoding: 8bit X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: Subject: Re: How To Close Ports (OT?) X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 04 Sep 2006 21:55:25 -0000 Well, I did that, and studied other documents as well, and have packet filters running right now. I also did a search of the document you suggested and it doesn't even have the word "close" in it, therefore, it would appear to not address the issue. From your reply, I'm missing something obvious here. But would you point it out anyway? Thanks, Ted3 "Travis H." wrote: On 9/4/06, Ted Johnson wrote: > I have many ports open for various functions, email, ftp, squid, pound, various > instances of zope, etc. Of course, all of them are libel to be attacked. > What does one do? There's this thing called pf, you should really look into it. Start with: man pf Then try reading the pf FAQ. If that is too confusing, google for a basic tutorial on network security. -- "If you're not part of the solution, you're part of the precipitate." Unix "guru" for rent or hire -><- http://www.lightconsulting.com/~travis/ GPG fingerprint: 9D3F 395A DAC5 5CCC 9066 151D 0A6B 4098 0C55 1484 --------------------------------- Talk is cheap. Use Yahoo! Messenger to make PC-to-Phone calls. Great rates starting at 1¢/min.