From owner-freebsd-security  Thu Aug  9 17:44:25 2001
Delivered-To: freebsd-security@freebsd.org
Received: from web12008.mail.yahoo.com (web12008.mail.yahoo.com [216.136.172.216])
	by hub.freebsd.org (Postfix) with SMTP id 9624C37B401
	for <freebsd-security@freebsd.org>; Thu,  9 Aug 2001 17:44:20 -0700 (PDT)
	(envelope-from bsd2000au@yahoo.com.au)
Message-ID: <20010810004420.33780.qmail@web12008.mail.yahoo.com>
Received: from [61.9.188.204] by web12008.mail.yahoo.com; Fri, 10 Aug 2001 10:44:20 EST
Date: Fri, 10 Aug 2001 10:44:20 +1000 (EST)
From: =?iso-8859-1?q?Keith=20Spencer?= <bsd2000au@yahoo.com.au>
To: fbsdsec <freebsd-security@freebsd.org>
MIME-Version: 1.0
Content-Type: text/plain; charset=iso-8859-1
Content-Transfer-Encoding: 8bit
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-security.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-security>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-security>
X-Loop: FreeBSD.org

Hi all,
I have been hacked/cracked...they put a backdoor and a
BNC on my gateway router (damn)
So...I am in the middle of an urgent anti-hacking
rebuild.
Should I build a separate preimeter firewall machine
with only that on it...restrict/remove compilers etc
(how do I do that?) and have the router/dns/web/wail
server inside the perimeter.

OR

should I simply put IPFW on the router/dns/web/mail
server?
Any ideas guys?
Tjhanks
Keith

_____________________________________________________________________________

_____________________________________________________________________________
http://shopping.yahoo.com.au - Father's Day Shopping
- Find the perfect gift for your Dad for Father's Day

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message