Go Back   DaemonForums > OpenBSD > OpenBSD Security

OpenBSD Security Functionally paranoid!

Thread Tools Display Modes
Prev Previous Post   Next Post Next
  #1   (View Single Post)  
Old 11th May 2013
ripe's Avatar
ripe ripe is offline
Port Guard
Join Date: Feb 2013
Posts: 22
Default A question about pf by default.

Hi all,

I am new on OpenBSD, my level is not good about security :
I installed OpenBSD 5.3, is the pf.conf by default enough to protect me ?!

#       $OpenBSD: pf.conf,v 1.52 2013/02/13 23:11:14 halex Exp $
# See pf.conf(5) for syntax and examples.
# Remember to set net.inet.ip.forwarding=1 and/or net.inet6.ip6.forwarding=1
# in /etc/sysctl.conf if packets are to be forwarded between interfaces.

# increase default state limit from 10'000 states on busy systems
#set limit states 100000

set skip on lo

# filter rules and anchor for ftp-proxy(8)
#anchor "ftp-proxy/*"
#pass in quick inet proto tcp to port ftp divert-to port 8021

# anchor for relayd(8)
#anchor "relayd/*"

block           # block stateless traffic
pass            # establish keep-state

# rules for spamd(8)
#table <spamd-white> persist
#table <nospamd> persist file "/etc/mail/nospamd"
#pass in on egress proto tcp from any to any port smtp \
#    rdr-to port spamd
#pass in on egress proto tcp from <nospamd> to any port smtp
#pass in log on egress proto tcp from <spamd-white> to any port smtp
#pass out log on egress proto tcp to any port smtp

#block in quick from urpf-failed to any # use with care

# By default, do not permit remote connections to X11 block in on ! lo0 proto tcp to port 6000:6010
Thanks for any help.
Reply With Quote

Thread Tools
Display Modes

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is On
HTML code is Off

Forum Jump

Similar Threads
Thread Thread Starter Forum Replies Last Post
Ram usage on default installations libertas General software and network 7 21st January 2012 04:46 PM
default crontab fbroce OpenBSD Installation and Upgrading 13 13th September 2010 09:20 PM
Security by default bettyblue OpenBSD Security 4 30th May 2010 08:30 PM
how APM & ACPI duke it out to be the default ocicat OpenBSD General 0 23rd June 2009 04:05 AM
external drive partition question + fdisk question gosha OpenBSD General 15 15th June 2009 02:00 PM

All times are GMT. The time now is 06:05 PM.

Powered by vBulletin® Version 3.8.4
Copyright ©2000 - 2018, Jelsoft Enterprises Ltd.
Content copyright © 2007-2010, the authors
Daemon image copyright ©1988, Marshall Kirk McKusick