Sitemap
Table of Contents
BackCover
Absolute OpenBSD - UNIX for the Practical Paranoid
Chapter 0: Introduction
What Is BSD?
BSD Goes Public
AT&T UNIX
What Is OpenBSD?
Other BSDs
OpenBSD Users
OpenBSD Developers
OpenBSD''s Strengths
OpenBSD Security
OpenBSD''s Uses
Who Should Read This Book?
Contents Overview
Chapter 1: Additional Help
OpenBSD Community Support
" The Code Is Fine; What''s Wrong with You? "
Man Pages
www.OpenBSD.org
Other Websites
Mailing Lists
Using OpenBSD Problem-Solving Resources
Mailing for Help
Chapter 2: Installation Preparations
OpenBSD Hardware
Getting OpenBSD
The OpenBSD Release
Choosing Your Install Method
Distribution Sets
Partitioning
Standalone OpenBSD Partitioning
Multiple OS Partitioning
Disk Sectors
Decisions Complete!
Chapter 3: Dedicated Installation
Hardware Setup
Making a Boot Floppy
Booting
The Install Program
Disk Setup
Creating OpenBSD Partitions
Subsequent Disks
Other Disklabel Operations
Final Disk Configuration
Network Setup
Root Password
Installation Media
Distribution Sets
Custom Installation Sets and Scripts
Final Installation Steps
Chapter 4: Multiboot Installation
Dual-Boot Install Overview
MBR Partitions
Dual-Boot Installation Restrictions
Hard Disk Geometry
Using fdisk During an Install
Other fdisk Options
Disklabel on Multiboot Systems
Installing from a Foreign File System Partition
Boot Managers
Chapter 5: Post-Install Setup
Basic Configuration
Integrated Program Configuration
Common /etc/rc.conf Assignments
Installing the Source Code
Installing the Ports Collection
Further Setup
Chapter 6: Startup and Booting
Boot Configuration
/etc/boot.conf
Serial Consoles
Multiuser Startup
Editing /etc/rc Scripts
Chapter 7: Managing Users
Single-User Systems
Adding Users
Removing User Accounts
Groups of Users
User Classes
The Root Password
Using Groups to Avoid Using Root
Hiding Root with Sudo
Chapter 8: Networking
Network Layers
The Life and Times of a Network Request
Networking Basics
Basic TCP/IP
Configuring Interfaces
IP Routing
Chapter 9: Internet Connections
Ethernet
Chapter 10: Additional Security Features
Who Is the Enemy?
OpenBSD Security Announcements
Checksums
File Flags
Securelevels
Systrace
Creating Systrace Policies
Real-Time Systrace Monitoring
Software Security Features
Chapter 11: Basic Kernel Configuration
What Is the Kernel?
Startup Messages
Sysctl(8)
Kernel Alteration with config(8)
Boot-Time Kernel Configuration
Chapter 12: Building Custom Kernels
Preparations
Configuration File Format
Configuration Files
Busses and Attachments
Stripping Down the Kernel
config(8)
Building a Kernel
Installing Your Kernel
Chapter 13: Add-On Software
Making Software
The Ports and Packages System
The Ports Tree
Using Packages
Using Ports
Port Flavors
Uninstalling and Reinstalling
Customizing Download Sources
Running Foreign Software
Chapter 14: /ETC
/etc/adduser.conf
/etc/afs/
/etc/amd/
/etc/authpf/
/etc/boot.conf
/etc/bootptab
/etc/ccd.conf
/etc/changelist
/etc/csh.*
/etc/daily
/etc/daily.local
/etc/dhclient.conf
/etc/dhcpd.conf
/etc/disklabels/
/etc/exports
/etc/fstab
/etc/ftpchroot
/etc/ftpusers
/etc/groups
/etc/hostname
/etc/hosts
/etc/hosts.equiv
/etc/inetd.conf
/etc/hosts.lpd
/etc/kerberosIV
/etc/kerberosV
/etc/ksh.kshrc
/etc/localtime
/etc/locate.rc
/etc/login.conf
/etc/lynx.cfg
/etc/magic
/etc/mail/
/etc/mail.rc
/etc/mailer.conf
/etc/man.conf
/etc/master.passwd
/etc/mk.conf
/etc/moduli
/etc/monthly
/etc/monthly.local
/etc/motd
/etc/mtree
/etc/myname
/etc/netstart
/etc/newsyslog.conf
/etc/passwd
/etc/pf.conf
/etc/phones
/etc/portal.conf
/etc/ppp/
/etc/printcap
/etc/protocols
/etc/pwd.db
/etc/rbootd.conf
/etc/rc.*
/etc/remote
/etc/resolv.conf
/etc/rpc
/etc/security
/etc/services
/etc/shells
/etc/skel/
/etc/skeykeys
/etc/sliphome/
/etc/spwd.db
/etc/ssh/
/etc/ssl/
/etc/sudoers
/etc/sysctl.conf
/etc/syslog.conf
/etc/systrace/
/etc/termcap
/etc/ttys
/etc/weekly
/etc/weekly.local
/etc/wsconsctl.conf
Chapter 15: Disk and File System Management
The File System Table: /etc/fstab
The Fast File System
Corrupt FFS Partitions
Mount(8) and FFS
Mounting Foreign File Systems
Removable Media
Adding New Hard Disks
Memory File Systems
Mounting Disk Images
Encrypted Partitions
Chapter 16: Upgrading OpenBSD
Why Upgrade?
Versions of OpenBSD
Errata
Upgrading OpenBSD
Upgrading Base Software
Merging /etc
Updating Ports and Packages
Upgrades from Source
Standard Source Build Process
Chapter 17: Basic Packet Filtering
Firewalls
Enabling PF
What Is Packet Filtering?
Packet Filter Control Program
/etc/pf.conf
Macros
Tables
Options
Packet Normalization
Packet Filtering
Rules, Interfaces, and DHCP
Using Stateful Inspection
Filtering Spoofed Packets
Chapter 18: More Packet Filtering
Network Address Translation
Connection Redirection
FTP and Firewalls
Load Balancing
Bandwidth Management
ALTQ Parent Queue Setup
Defining Priority Queues
Defining Class-Based Queues
Assigning Traffic to Queues
Queuing by Type of Service
Rule Optimization
Chapter 19: Managing PF
Managing Tables
Managing State Tables
Authenticating PF
PF Logging
Appendix A: i386 Kernel Configuration Choices
CPU Configuration
Miscellaneous Options
Common Device Drivers
i386 Kernel Options
Pseudo-Devices
Appendix B: PF Example Configurations
Home Firewall
Small Office Usage
3-Tier Architecture
Afterword
Index
Index_Numbers
Index_A
Index_B
Index_C
Index_D
Index_E
Index_F
Index_G
Index_H
Index_I
Index_K
Index_L
Index_M
Index_N
Index_O
Index_P
Index_Q
Index_R
Index_S
Index_T
Index_U
Index_V
Index_W
Index_X
Index_Y
Index_Z
List of Tables