From owner-freebsd-questions Wed Feb 4 22:36:14 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id WAA16433 for questions-outgoing; Wed, 4 Feb 1998 22:36:14 -0800 (PST) (envelope-from owner-freebsd-questions@FreeBSD.ORG) Received: from super-g.inch.com (super-g.com [207.240.140.161]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id WAA16388 for ; Wed, 4 Feb 1998 22:36:03 -0800 (PST) (envelope-from spork@super-g.com) Received: from localhost (localhost [127.0.0.1]) by super-g.inch.com (8.8.8/8.8.5) with SMTP id BAA26435; Thu, 5 Feb 1998 01:35:57 -0500 (EST) Date: Thu, 5 Feb 1998 01:35:57 -0500 (EST) From: spork X-Sender: spork@super-g.inch.com To: Jamie Lawrence cc: freebsd-questions@FreeBSD.ORG Subject: Re: minimalist /etc/services and /etc/inetd.conf Re: Security In-Reply-To: <3.0.3.32.19980204151937.009b37d0@colonel.42inc.com> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-questions@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG X-To-Unsubscribe: mail to majordomo@FreeBSD.org "unsubscribe questions" On Wed, 4 Feb 1998, Jamie Lawrence wrote: > A machine running little other than an httpd and sshd has no need to > know that port 4045 maps to lockd. And so on. But what does the editing of /etc/services buy you in extra security? Just start the services you want. What isn't started in inetd is started somewhere in rc.local or /usr/local/etc/rc.d somewhere. I don't see any more logic in this than there would be in removing keyboard mappings, manpages, or info files. Charles Sprickman spork@super-g.com ---- "I'm not a prophet or a stone-age man Just a mortal with potential of a superman I'm living on" -DB