DaemonForums  

Go Back   DaemonForums > OpenBSD > OpenBSD Security

OpenBSD Security Functionally paranoid!

Reply
 
Thread Tools Display Modes
  #1   (View Single Post)  
Old 3rd August 2010
jepettrey jepettrey is offline
New User
 
Join Date: Aug 2010
Posts: 7
Thanked 0 Times in 0 Posts
Default Can anybody recommend a book for learning how to work with OpenBSD firewalls?

I have no experience with OpenBSD firewalls and am now in a position where I'll need to be supporting them. If anybody can point me to a good book (or website) that will teach me from a very basic level I would appreciate it.

Thanks!
Reply With Quote
  #2   (View Single Post)  
Old 3rd August 2010
ocicat ocicat is offline
Administrator
 
Join Date: Apr 2008
Posts: 2,888
Thanked 190 Times in 160 Posts
Default

Quote:
Originally Posted by jepettrey View Post
If anybody can point me to a good book (or website) that will teach me from a very basic level I would appreciate it.
Your best bet is to start with Hansteen's manuscript:

http://home.nuug.no/~peter/pf/

This is also the basis of his book, The Book of PF which contains some information not found in the online manuscript. The second edition of The Book of PF is to be released in September, but given the number of changes which have been made to pf(4) since the first edition was released, the first edition is now only marginally recommended.

If you are not familiar with the PF User's Guide, this is a must-read document as it covers all current features to pf(4).

Being new to OpenBSD, we highly recommend you familiarize yourself with the information found in the offical FAQ:

http://www.openbsd.org/faq/index.html

...as this is the definitive source of information on OpenBSD outside of the manpages.
Reply With Quote
  #3   (View Single Post)  
Old 3rd August 2010
jepettrey jepettrey is offline
New User
 
Join Date: Aug 2010
Posts: 7
Thanked 0 Times in 0 Posts
Default

Quote:
Originally Posted by ocicat View Post
Your best bet is to start with Hansteen's manuscript:

This is also the basis of his book, The Book of PF which contains some information not found in the online manuscript. The second edition of The Book of PF is to be released in September, but given the number of changes which have been made to pf(4) since the first edition was released, the first edition is now only marginally recommended.

If you are not familiar with the , this is a must-read document as it covers all current features to pf(4).

Being new to OpenBSD, we highly recommend you familiarize yourself with the information found in the offical FAQ:

...as this is the definitive source of information on OpenBSD outside of the manpages.
This is awesome, thanks for this!
Reply With Quote
  #4   (View Single Post)  
Old 3rd August 2010
ocicat ocicat is offline
Administrator
 
Join Date: Apr 2008
Posts: 2,888
Thanked 190 Times in 160 Posts
Default

The sources I have quoted to you are vetted by the overall OpenBSD community.

Be forewarned that if you Google for OpenBSD information, you may find a lot of stuff, but much of it is old, out-of-date, incomplete, or simply wrong. OpenBSD is a moving target, & staying informed has its challenges. Part of that challenge is knowing who/what to trust, & where to remain skeptical of its validity.
  • In general, the *BSD family places great importance on the correctness of its manpages. Being a small project, OpenBSD considers its manpages to be the definitive source of truth outside of the source code itself.
  • Information found on the offficial mailing lists -- when uttered by the project developers -- should be considered definitive as well.
  • Project documentation (such as the FAQ & User's Guide) would come next in terms of trustworthiness.
  • Third-party sites (like this one...) attempt to provide correct information, but few if any project developers visit these sites, so you will have to gauge the amount of truthfulness with anything not officially associated with the project yourself.
Reply With Quote
  #5   (View Single Post)  
Old 3rd August 2010
jggimi's Avatar
jggimi jggimi is offline
More noise than signal
 
Join Date: May 2008
Location: USA
Posts: 3,710
Thanked 214 Times in 189 Posts
Default

There is a terrific book, now quite a bit out of date, but that will still help you understand this OS. Absolute OpenBSD, by Michael W. Lucas, No Starch Press. Out of print, but the publisher sells a .pdf version. There should be a sample chapter and other information at www.absoluteopenbsd.com if you'd like to take a look.
Reply With Quote
  #6   (View Single Post)  
Old 24th November 2010
girarde girarde is offline
Port Guard
 
Join Date: Nov 2010
Location: NW FL
Posts: 26
Thanked 1 Time in 1 Post
Default

Quote:
Originally Posted by jggimi View Post
There is a terrific book, now quite a bit out of date, but that will still help you understand this OS. Absolute OpenBSD, by Michael W. Lucas, No Starch Press. Out of print, but the publisher sells a .pdf version.
The book is a little out of date, too, but very very nice.
Reply With Quote
  #7   (View Single Post)  
Old 24th November 2010
gpatrick gpatrick is offline
Shell Scout
 
Join Date: Nov 2009
Posts: 120
Thanked 0 Times in 0 Posts
Default

"Building Firewalls with OpenBSD and PF" 2nd edition by Jacek Artymiak
"The Book of PF" 1st edition, 2nd edition by Peter Hansteen
"The OpenBSD Packet Filter Book" by Jeremy C. Reed

The second edition of "The Book of PF" has been updated for changes to PF in 4.8.
Reply With Quote
Reply

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
The Book of PF anomie Book reviews 8 19th December 2012 03:10 PM
Learning how to program Solaris_Delta Programming 9 24th December 2008 07:58 PM
Learning Programming Crypt Programming 35 27th October 2008 04:54 PM
Learning Perl mtx Book reviews 7 22nd October 2008 05:55 PM
Couple of network questions (NAT, firewalls) ivanatora FreeBSD General 10 21st July 2008 05:26 PM


All times are GMT. The time now is 11:23 PM.


Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2014, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick