Next:
Executive Summary
Firewall audit for Ottawa Sun Publishing
Michael C. Richardson
Sandelman Software Works Inc.
mcr@sandelman.ottawa.on.ca
November 1, 1998
Executive Summary
Security Policy
Purpose
Acceptable Use
A) Email Services
B) Additional Services
Denied Ports, protocols and services
Setup and Configuration
DHCP
RIP
Ascend Pipeline 50 console
Hub console
Email system
sendmail 8.8.7
spam deflection
spam relaying
Outbound port scan
Inbound port scan
Firewall internals: active processes
Kernel processes
Loadable kernel module daemon
System logging daemon
Kernel logging daemon
Cron daemon
Intenet SuperServer
DNS server (bind)
Line printer daemon
Mail server
Console mouse manager
Console login programs
Graphics login program
X graphical programs
User Programs
Sun RPC name server
Active sockets
Portmap
IMAP
Time server
Identity server
DNS server
printer
Email
XDM control protocol
X server
System logging daemon
Raw socket
Firewall internals: Priveledge programs
Overall impressions
Michael C. Richardson
1998-11-15
