suid bit files + securing FreeBSD
twig les
twigles at yahoo.com
Sat Jul 26 21:17:09 PDT 2003
I don't know exactly what you mean by "wizard", maybe a
menu-driven gui like Nero or M$ Lookout or something? Anyhoo I
really like this checklist here:
http://sddi.net/FBSDSecCheckList.html. I guess one could script
a lot of this. This page also has a boatload of links at the
bottom.
As for perfect security I like to run Sendmail and BIND on
RedHat myself, unless I can get my hands on an IIS box. woot!
Sorry, it's late Saturday, thus I'm feeling mischievous.
>
> Second question is: Has anybody an exact wizard, how to secure
> the FreeBSD machine. Imagine the situation, the only person
> who
> can do anything on that machine is me, and nobody other. I
> have
> set very restrictive firewalling, I have removed ALL tty's
> except
> two local tty's (I need to work on that machine), but there
> are
> still open port 25 and 53 (must be forever), so someone very
> tricky can compromite my machine.
>
> I'm a little bit paranoic, don't I :-)))))))
>
> Cheers,
>
> Peter Rosa
> _______________________________________________
> freebsd-security at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-security
> To unsubscribe, send any mail to
"freebsd-security-unsubscribe at freebsd.org"
=====
-----------------------------------------------------------
Emo is what happens when the glee club goes punk.
-----------------------------------------------------------
__________________________________
Do you Yahoo!?
Yahoo! SiteBuilder - Free, easy-to-use web site design software
http://sitebuilder.yahoo.com
More information about the freebsd-security
mailing list