From owner-freebsd-questions@FreeBSD.ORG Sun Apr 17 15:04:04 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6EDF716A4CE for ; Sun, 17 Apr 2005 15:04:04 +0000 (GMT) Received: from ipact2.infopact.nl (x71.infopact.nl [212.29.160.71]) by mx1.FreeBSD.org (Postfix) with ESMTP id A13BD43D1F for ; Sun, 17 Apr 2005 15:04:03 +0000 (GMT) (envelope-from joost@amiculus.com) Received: from [192.168.1.101] (32-11-ftth.onsnet.nu [84.35.11.32]) by ipact2.infopact.nl (8.12.10/8.12.10) with ESMTP id j3HF42Vv002574 for ; Sun, 17 Apr 2005 17:04:02 +0200 From: Joost van Dijk Organization: Amiculus To: freebsd-questions@freebsd.org Date: Sun, 17 Apr 2005 17:03:46 +0200 User-Agent: KMail/1.7.1 References: <200504171304.48447.joost@amiculus.com> <200504171551.11050.joost@amiculus.com> <20050417143512.GA44874@slackbox.xs4all.nl> In-Reply-To: <20050417143512.GA44874@slackbox.xs4all.nl> MIME-Version: 1.0 Content-Type: text/plain; charset="utf-8" Content-Transfer-Encoding: 7bit Content-Disposition: inline Message-Id: <200504171703.46362.joost@amiculus.com> X-Scanned-By: MIMEDefang - SpamAssassin Subject: Re: messages from dhclient X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Sun, 17 Apr 2005 15:04:04 -0000 > Don't turn off the firewall. > etc... > Depends on what your network configuration is. If you are sitting behind > an ethernet ADSL router, you're probably OK, since those usually come > with a firewell and NAT built-in. If you don't have one of those, you > would be wise to firewall all the systems that are in direct contact > with the Internet. IMHO making an unfirewalled box directly accessibly > from the internet is an accident waiting to happen. > > If you cannot set up a firewall, at least disable all unneeded > services. E.g. disable sendmail if you don't need it. That will minimize > the chances of your boxen being h4x0r3d. :-) Roland and Bob I have glass fiber (100 MB/sec) that comes through one router which is not a NAT and has no firewall built in. I have been told that this is one hop from the backbone. I have attached the glass fiber to a modem, which gives me eight 10 MB/sec ethernet outlets. The modem is dumb and contains no firewall. That puts my computer two unprotected hops from the backbone (if I understand this correctly). One could say that I am exposed, without risking great exaggeration. But that doesn't matter, because there is really nothing on the machine. I am only using it to learn on. What does IMHO mean? What does h4x0r3d mean? Joost