Re: [fw-wiz] Securing a Linux Firewall

From: Frank Knobbe (fknobbe@knobbeits.com)
Date: 07/23/02 

From: Frank Knobbe <fknobbe@knobbeits.com>
To: firewall-wizards@honor.icsalabs.com
Date: Tue Jul 23 19:54:50 2002

On Tue, 2002-07-23 at 15:19, Mordechai T. Abzug wrote:
> I like to remove whole "packages" that contain undesirable
> executables. That allows me to install vendor-supplied patch bundles
> without reenabling most of the services that I had disabled. In
> practice, it's usually not possible to do this with perfect
> granularity, so it's still necessary to go back in and clean up after
> a patch bundle. But it's nice to have less to worry about.

Speaking of granularity. Does anyone have any decent
remove-unused-or-harmful-programs scripts for FreeBSD 4.5-6? I went
through it at one time to cut everything out except for firewalling and
pcap capabilities, but got myself locked out and had to rebuild. As soon
as I have more time on my hands, I shall try again. But if anyone has
some good scripts or docs to start with, I would appreciate it greatly.
(I'll compensate with beers in Vegas next week :)

Thanks,
Frank