From owner-freebsd-security Tue Nov 27 10:18:29 2001 Delivered-To: freebsd-security@freebsd.org Received: from male.aldigital.co.uk (male.aldigital.co.uk [213.129.64.13]) by hub.freebsd.org (Postfix) with ESMTP id E731937B417 for ; Tue, 27 Nov 2001 10:18:26 -0800 (PST) Received: from algroup.co.uk (sockittome.aldigital.co.uk [194.128.162.252]) by male.aldigital.co.uk (Postfix) with ESMTP id 7ED816A1428; Tue, 27 Nov 2001 18:18:23 +0000 (GMT) Message-ID: <3C03D8EF.58AF9BF9@algroup.co.uk> Date: Tue, 27 Nov 2001 18:18:23 +0000 From: Adam Laurie Organization: A.L. Group plc X-Mailer: Mozilla 4.76 [en] (Win95; U) X-Accept-Language: en MIME-Version: 1.0 To: Tom Beer Cc: security@FreeBSD.ORG Subject: Re: Amanda - inetd References: <001f01c1765c$3ccfba80$0901a8c0@system> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.org Tom Beer wrote: > > Hi, > > I'm planning to install amanda (remote backup > solution) on a freebsd box as a client. Unfourtunately > amanda needs inetd, which I don't want to start > for security reasons. Even not tcpwarrped. > Is there a way to bring my ppp dialup connection > down, start inetd, start amanda, ending inetd after > the backup and starting my ppp connection > again? Or is there a better solution? use xinetd and bind amanda's service only to loopback. oh, and make sure your loopback is protected against remote routing. ipfw in "open" mode will do this if you're not already running a firewall anyway. cheers, Adam -- Adam Laurie Tel: +44 (20) 8742 0755 A.L. Digital Ltd. Fax: +44 (20) 8742 5995 The Stores http://www.thebunker.net 2 Bath Road http://www.aldigital.co.uk London W4 1LT mailto:adam@algroup.co.uk UNITED KINGDOM PGP key on keyservers To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message