From owner-freebsd-questions  Mon Feb 19 11:10:55 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from web12407.mail.yahoo.com (web12407.mail.yahoo.com [216.136.173.134])
	by hub.freebsd.org (Postfix) with SMTP id 7DDB137B401
	for <freebsd-questions@freebsd.org>; Mon, 19 Feb 2001 11:10:51 -0800 (PST)
Message-ID: <20010219191051.91807.qmail@web12407.mail.yahoo.com>
Received: from [200.202.117.115] by web12407.mail.yahoo.com; Mon, 19 Feb 2001 11:10:51 PST
Date: Mon, 19 Feb 2001 11:10:51 -0800 (PST)
From: Phelip Cray <phelipc@yahoo.com>
Subject: lock file-system
To: freebsd-questions@freebsd.org
MIME-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG


Hello everyone,

I am installing a server that will do mail ( exim /
gpop3d ) and webmail - apache + a few scripts.

this server will stay behind a firewall ( watchguard )
and off course will have its own IPF activated.

My questions is simple:

1 - I intend to block (IPF) everything except 25,110,
80 and ssh. Is there anything else I should do?

2 - I am considering using chflags on the file system
to make it read-only - if you were in my shoes, what
parts of the system would you turn ead only?

3 - Are there other secrity measures that can be taken
besides the ones above?

Thank yo very much,

phelip

__________________________________________________
Do You Yahoo!?
Get personalized email addresses from Yahoo! Mail - only $35 
a year!  http://personal.mail.yahoo.com/


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message