Geek Style

Keep up-to-date with critical patches

- Subscribe to freebsd-security-notifications mailing list to receive latest security related information

- Visit FreeBSD Security Information page frequently, or subscribe to the RSS feed.

- Patch your system as soon as security officer releases a new advisory. In most cases it is as easy as downloading and applying a patch and rebuild part of source code. In few cases you should rebuild the kernel and reboot the system. The advisory contains instruction on how to patch your system.

- If you are developer and you want to keep up to date, or you are running a -CURRENT or a -STABLE system and you care about latest changes and your security, keep your source tree up to date from CVS mirrors using cvsup utility. I personally update my systems using a cron script on daily basis.

- Use portaudit to check your ports againt latest security vulnerabilities. My suggestion is running portaudit -Fda frequently, whether manually, using a cron script or using periodic(8).