From owner-freebsd-questions@FreeBSD.ORG  Fri May 12 16:35:44 2006
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
X-Original-To: freebsd-questions@freebsd.org
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id 9F30D16A70E
	for <freebsd-questions@freebsd.org>;
	Fri, 12 May 2006 16:35:44 +0000 (UTC)
	(envelope-from e.schuele@computer.org)
Received: from sccrmhc14.comcast.net (sccrmhc14.comcast.net [204.127.200.84])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 4BE5443D60
	for <freebsd-questions@freebsd.org>;
	Fri, 12 May 2006 16:35:44 +0000 (GMT)
	(envelope-from e.schuele@computer.org)
Received: from [208.206.151.59] (host59.gtisd.com[208.206.151.59])
	by comcast.net (sccrmhc14) with ESMTP
	id <20060512163543014004r1jae>; Fri, 12 May 2006 16:35:43 +0000
Message-ID: <4464B95D.1040702@computer.org>
Date: Fri, 12 May 2006 11:35:41 -0500
From: Eric Schuele <e.schuele@computer.org>
User-Agent: Thunderbird 1.5.0.2 (X11/20060426)
MIME-Version: 1.0
To: FreeBSD Questions <freebsd-questions@freebsd.org>
Content-Type: text/plain; charset=ISO-8859-1; format=flowed
Content-Transfer-Encoding: 7bit
Subject: Pros and Cons of running under inetd....
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.5
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>, 
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Fri, 12 May 2006 16:35:47 -0000

Hello,

I run sshd and ftpd on my laptop.  I generally start them via:
   sshd_enable="YES"
   ftpd_enable="YES"
in my rc.conf.

What are the pros/cons of running them via inetd?

This is in no way a high load or production machine.  Just my laptop
that I need access to from time to time.

The one pro I have noticed (which is rather important to me) is that
ftpd does not heed hosts.allow directives when NOT run via inetd.  Am I
correct in this?  I prefer to use tcpwrappers to further protect my sshd 
and ftpd.  I generally keep ftpd firewalled off from the world and when 
someone needs to (anonymous) ftp something to me I open the firewall. 
But it would be nice to allow only their IP using hosts.allow (as I just 
enable/disable a generic ruleset in ipfw).  So should I forget to 
disable the ruleset in ipfw then I am not open all day till I reboot.

Thanks.
-- 
Regards,
Eric