From owner-freebsd-questions  Mon Oct 29  1:55:20 2001
Delivered-To: freebsd-questions@freebsd.org
Received: from mobil.cz (diana.mobil.cz [195.39.16.12])
	by hub.freebsd.org (Postfix) with ESMTP id 34BAC37B401
	for <questions@freebsd.org>; Mon, 29 Oct 2001 01:55:16 -0800 (PST)
Received: from ester.mobil.cz (ester.mobil.cz [194.213.62.23])
	by mobil.cz (8.11.6/8.11.0) with ESMTP id f9T9tEK07107;
	Mon, 29 Oct 2001 10:55:14 +0100
Received: from roman.mobil.cz ([10.2.0.89])
          by ester.mobil.cz (Lotus Domino Release 5.0.7)
          with ESMTP id 2001102910520144:3276 ;
          Mon, 29 Oct 2001 10:52:01 +0100 
Received: (from roman@localhost)
	by roman.mobil.cz (8.11.6/8.11.6) id f9T9xt787308;
	Mon, 29 Oct 2001 10:59:55 +0100 (CET)
	(envelope-from neuhauser@mobil.cz)
X-Authentication-Warning: roman.mobil.cz: roman set sender to neuhauser@mobil.cz using -f
Date: Mon, 29 Oct 2001 10:59:55 +0100
From: Roman Neuhauser <neuhauser@mobil.cz>
To: rene@xs4all.nl
Cc: questions@freebsd.org
Subject: Re: starting smbd and httpd securely (without inetd?)
Message-ID: <20011029105955.E80857@roman.mobil.cz>
References: <20011029103915.C8535@xs4all.nl>
Mime-Version: 1.0
In-Reply-To: <20011029103915.C8535@xs4all.nl>
User-Agent: Mutt/1.3.23i
X-MIMETrack: Itemize by SMTP Server on ester/Mobil(Release 5.0.7 |March 21, 2001) at 10/29/2001
 10:52:01 AM,
	Serialize by Router on ester/Mobil(Release 5.0.7 |March 21, 2001) at 10/29/2001
 10:52:08 AM,
	Serialize complete at 10/29/2001 10:52:08 AM
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-questions.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-questions>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-questions>
X-Loop: FreeBSD.ORG

> Date: Mon, 29 Oct 2001 10:39:16 +0100
> From: rene@xs4all.nl
> To: questions@freebsd.org
> Subject: starting smbd and httpd securely (without inetd?)
> 
> Hi. I am running a router that connects my internet. Since I have limited
> hardware resources, I am 'forced' to run my webserver and fileserver services
> on my firewall aswell. 
> 
> I do run the LAN that is connected to the internet (by ADSL) on a different
> network (192.168.102.*) than the ADSL modem (10.0.0.*)
> 
> I would like to know if it's a good idea to run smbd and httpd without
> starting up inetd for security concerns, given my above configuration. I
> remember reading something about inetd being insecure...
> 
> Please include a motivation(-URL) in your reply.

    Apache (if that's the httpd you use) runs standalone by default (ie
    not from inetd). And the same can be said for samba. Just install
    both from the ports, and make sure the startup files in
    /usr/local/etc/rc.d/ for these daemons are correct. You can then
    start them by either restarting, or 

    # /usr/local/etc/rc.d/apache.sh start
    # /usr/local/etc/rc.d/samba.sh start

    IIRC it's necessary that you give the full path.

    I don't have an URL.
    HTH.
   
-- 
FreeBSD 4.4-STABLE
10:55AM up 5 days, 21:38, 11 users, load averages: 0.06, 0.09, 0.07

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message