Re: Advice for Internet facing Mailserver
The FreeBSD Handbook also have some good tips:
http://www.freebsd.org/doc/en_US.ISO8859-1/books/handbook/security.html
Regards,
-- Johan Berg
On Fri, February 23, 2007 17:17, David Schulz wrote:
> Hello and good day,
>
> i have setup a Server which is directly connected to the Internet,
> without NAT-Router or other Firewall Appliance. I am using FreeBSD
> 6.2. I have pf enabled to only allow traffic on specified Ports. I am
> using Apache-13 + Postfix + Dovecot & mysql for my Mail-system. There
> is only one /home/User, which authenticates via a Key with Pass-
> phrase to sshd. The Mail-users all authenticate to a mysql database.
> I know that i could make use of chroot or better jail to secure the
> machine from possible exploits in postfix & co, but i am not yet
> comfortable with jail. Other then keeping my Ports (and system) up to
> date, can you give me some tips on how to secure my Box a little bit?
>
> Thanks a lot,
> David
> _______________________________________________
> freebsd-security@freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-security
> To unsubscribe, send any mail to
> "freebsd-security-unsubscribe@freebsd.org"
>
-- Johan Berg
_______________________________________________
freebsd-security@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/freebsd-security
To unsubscribe, send any mail to "freebsd-security-unsubscribe@freebsd.org"
討論串 (同標題文章)
完整討論串 (本文為第 4 之 6 篇):