Date: Sat, 22 Sep 2001 03:32:56 +0200 From: Benedikt Schmidt <ry102@rz.uni-karlsruhe.de> To: freebsd-questions@FreeBSD.ORG Subject: Re: security and firewall Message-ID: <20010922033256.A16599@wn4-marvin.wn4.uni-karlsruhe.de> In-Reply-To: <01092117533704.84922@chip.wiegand.org> References: <01092117533704.84922@chip.wiegand.org>
next in thread | previous in thread | raw e-mail | index | archive | help
Chip <chip@wiegand.org> wrote:
> I have a fbsd 4.0 box running nothing but natd/ipfw, and it appears to be
^^^
I would update to RELENG_4 or RELENG_4_4 even if you don't offer any
services to the net.
> fairly secure - I ran nmap against it from another fbsd box outside my
> network and it shows only the sunrpc port 111 open. I have added to my ipfw
> rules a rule that explicity denies port 111. I have also disabled inetd and
> yet get the following udp ports showing as open - 111, 514, 520.
Use 'sockstat -l4' to find out which processes are binding these ports.
514/udp is sylogd and can be disabled by adding 'syslogd_flags="-ss"' to
rc.conf.
Additionally it is generally better to start with denying everything
and make rules to allow only whats really needed.
--
Benedikt
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010922033256.A16599>