Staying safe and sound
arickp at cox.net
Sat Dec 6 00:29:02 UTC 2014
-----BEGIN PGP SIGNED MESSAGE-----
I'm administering FreeBSD on a public-facing virtual server as a side
project/resume builder/etc. My question is: what should I be doing to
keep the blackhat hax0rz away? I do some of the obvious (firewalling
most inbound traffic with ipfilter, reading the log files daily).
I'm still on FreeBSD 10.0, so I'm assuming that I should upgrade the
kernel to 10.1. If I do go up to 10.1, is this simple enough on a
running system? I don't want to lose whatever drivers/modules/etc.
that came with the fresh DVD install of 10.0 (the virtual is running
FreeBSD using Xen, if that makes a difference).
I assume I should also be doing pkg update; pkg upgrade on a regular
basis, too. Anything else I should be doing -- is there another
mailing list or RSS feed that notifies you about major vulnerabilities?
(Yes, I realize OpenBSD is the choice for those serious about
security, but like I said, this is mostly a playground server for
personal use. That said, I don't want to become an open relay, have my
site defaced, etc.)
Eric Popelka / arickp at cox.net
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v2
Comment: GPGTools - https://gpgtools.org
-----END PGP SIGNATURE-----
More information about the freebsd-questions