securing beyond the handbook
Jim Stapleton
stapleton.41 at gmail.com
Wed May 10 20:22:41 PDT 2006
Rephrase:
I have 5 static IPs
currently 1 is being used to "power" the NAT for all the machines
inside the network, the other 4 are empty.
I'm getting one of those 4 remaining, and having it point directly to
my BSD machine.
On 5/10/06, fbsd <fbsd at a1poweruser.com> wrote:
> There is no difference between a dynamic and static ip
> address from the point of the firewall.
>
> If you felt secure before, then getting a static ip
> address will have no effect on that.
>
> -----Original Message-----
> From: owner-freebsd-questions at freebsd.org
> [mailto:owner-freebsd-questions at freebsd.org]On Behalf Of Jim
> Stapleton
> Sent: Wednesday, May 10, 2006 9:18 AM
> To: freebsd-questions at freebsd.org
> Subject: securing beyond the handbook
>
>
> I'm about to get a static IP and direct outside access for my BSD
> box
> (before it was hidden behind a firewall/NAT). I was comfortable with
> the level of security I've had, but with the whole "open to the
> outside world" setup I'll have, what would you suggest for securing
> it?
>
> I'll be running:
> Apache
> PHP
> MySQL
> SSH/SFTP
> OpenRPG (only occasionally, from a special nonpriv account)
>
> Any suggestions, any of these that you know are such huge security
> holes that you would absolutely demand something else be run?
>
> Any other security suggestions?
>
> Thanks,
> -Jim
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to
> "freebsd-questions-unsubscribe at freebsd.org"
>
>
More information about the freebsd-questions
mailing list