From owner-freebsd-questions@FreeBSD.ORG Fri May 12 22:00:34 2006 Return-Path: X-Original-To: questions@freebsd.org Delivered-To: freebsd-questions@FreeBSD.ORG Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 9269516A435 for ; Fri, 12 May 2006 22:00:34 +0000 (UTC) (envelope-from derek@computinginnovations.com) Received: from betty.computinginnovations.com (dsl081-142-072.chi1.dsl.speakeasy.net [64.81.142.72]) by mx1.FreeBSD.org (Postfix) with ESMTP id 563D443D49 for ; Fri, 12 May 2006 22:00:09 +0000 (GMT) (envelope-from derek@computinginnovations.com) Received: from p17.computinginnovations.com (dhcp-10-20-30-100.computinginnovations.com [10.20.30.100]) (authenticated bits=0) by betty.computinginnovations.com (8.13.6/8.12.11) with ESMTP id k4CLxicq072282; Fri, 12 May 2006 16:59:45 -0500 (CDT) Message-Id: <6.0.0.22.2.20060512165738.026575c0@mail.computinginnovations.com> X-Sender: derek@mail.computinginnovations.com X-Mailer: QUALCOMM Windows Eudora Version 6.0.0.22 Date: Fri, 12 May 2006 16:59:38 -0500 To: wc_fbsd@xxiii.com, freeBSD Questions From: Derek Ragona In-Reply-To: <6.2.3.4.2.20060512163433.02e85298@mailsvr.xxiii.com> References: <4464B95D.1040702@computer.org> <20060512171515.GC34035@catflap.slightlystrange.org> <4464CEDA.80906@computer.org> <6.0.0.22.2.20060512152402.026a60c8@mail.computinginnovations.com> <6.2.3.4.2.20060512163433.02e85298@mailsvr.xxiii.com> Mime-Version: 1.0 X-ComputingInnovations-MailScanner-Information: Please contact the ISP for more information X-ComputingInnovations-MailScanner: Found to be clean X-ComputingInnovations-MailScanner-From: derek@computinginnovations.com X-Spam-Status: No Content-Type: text/plain; charset="us-ascii"; format=flowed X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: Subject: Re: Pros and Cons of running under inetd.... X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Fri, 12 May 2006 22:00:35 -0000 Yes it is still true today. The default system now has inetd running nothing. And the ports now install rc scripts for these reasons. For network daemons, when they are running in a listen mode there is no real overhead on the system. -Derek At 03:41 PM 5/12/2006, wc_fbsd@xxiii.com wrote: >At 04:25 PM 5/12/2006, you wrote: >>inetd running is discouraged. Instead run the daemons on boot using rc >>scripts. If you look back in the history, inetd running is a security >>risk, and was discouraged in the 5.X releases. > >Is that still really true? Waaayyy back when, inetd would have all kinds >of dangerous services enabled by default (allowing DOS stuff like spewing >"chargen" into "discard"). > >But that was a configuration issue, and issues with the services it >launched; not with inetd itself. > >The authentication is still done within ftpd. You're just saving the tiny >overhead of running it all the time for occasional use. And inetd does >allow the tcpwrappers for anything it launches (obviously the wrappers are >compiled into many other things now, ftpd included.) > > -Wayne > >_______________________________________________ >freebsd-questions@freebsd.org mailing list >http://lists.freebsd.org/mailman/listinfo/freebsd-questions >To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org" > >-- >This message has been scanned for viruses and >dangerous content by MailScanner, and is >believed to be clean. >MailScanner thanks transtec Computers for their support. > -- This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. MailScanner thanks transtec Computers for their support.