From owner-freebsd-security  Sat Sep 30  8: 1:45 2000
Delivered-To: freebsd-security@freebsd.org
Received: from point.osg.gov.bc.ca (point.osg.gov.bc.ca [142.32.102.44])
	by hub.freebsd.org (Postfix) with ESMTP id 6989E37B66C
	for <security@FreeBSD.ORG>; Sat, 30 Sep 2000 08:01:41 -0700 (PDT)
Received: (from daemon@localhost)
	by point.osg.gov.bc.ca (8.8.7/8.8.8) id IAA09329;
	Sat, 30 Sep 2000 08:00:17 -0700
Received: from passer.osg.gov.bc.ca(142.32.110.29)
 via SMTP by point.osg.gov.bc.ca, id smtpda09323; Sat Sep 30 07:59:57 2000
Received: (from uucp@localhost)
	by passer.osg.gov.bc.ca (8.11.0/8.9.1) id e8UExvD80406;
	Sat, 30 Sep 2000 07:59:57 -0700 (PDT)
Received: from cwsys9.cwsent.com(10.2.2.1), claiming to be "cwsys.cwsent.com"
 via SMTP by passer9.cwsent.com, id smtpdZ80397; Sat Sep 30 07:59:01 2000
Received: (from uucp@localhost)
	by cwsys.cwsent.com (8.11.0/8.9.1) id e8UEx1r64844;
	Sat, 30 Sep 2000 07:59:01 -0700 (PDT)
Message-Id: <200009301459.e8UEx1r64844@cwsys.cwsent.com>
Received: from localhost.cwsent.com(127.0.0.1), claiming to be "cwsys"
 via SMTP by localhost.cwsent.com, id smtpdi64830; Sat Sep 30 07:58:03 2000
X-Mailer: exmh version 2.1.1 10/15/1999
Reply-To: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca>
From: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca>
X-OS: FreeBSD 4.1-RELEASE
X-Sender: cy
To: Neil Blakey-Milner <nbm@mithrandr.moria.org>
Cc: Cy Schubert - ITSD Open Systems Group <Cy.Schubert@uumail.gov.bc.ca>,
	Adam Laurie <adam@algroup.co.uk>, security@FreeBSD.ORG
Subject: Re: inetd sucks? (Re: cvs commit: ports/mail/pine4 Makefile 
 (fwd))
In-reply-to: Your message of "Sat, 30 Sep 2000 16:19:33 +0200."
             <20000930161933.A15519@mithrandr.moria.org> 
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Date: Sat, 30 Sep 2000 07:58:02 -0700
Sender: owner-freebsd-security@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org

In message <20000930161933.A15519@mithrandr.moria.org>, Neil 
Blakey-Milner writ
es:
> The problem here is that 'telnet' is the LCD, and with the really bad
> way inetd is configured, it isn't easy to twiddle this bit from
> sysinstall.  We ask about 'ftp' too, and it's sort-of expected to work.
> The rest, in my opinion, can all be commented out.
> 
> The alternative (which I'm almost finished working on) is to use a
> directory + file configuration structure (which I've subsequently found
> out xinetd uses) which allows sysinstall and other scripts to twiddle
> services with ease.

I assume you're going to make your work public, e.g. a port?  Will it 
compile on Solaris, Tru64-UNIX, and Linux too?

I played around with a similar concept using the portal filesystem.  
This idea needs more investigation.

I've got an awk script that twiddles the bits in inetd.conf.  It's not 
that difficult to do.  The nice thing about it is that it's 
cross-platform.


Regards,                       Phone:  (250)387-8437
Cy Schubert                      Fax:  (250)387-5766
Team Leader, Sun/DEC Team   Internet:  Cy.Schubert@osg.gov.bc.ca
Open Systems Group, ITSD, ISTA
Province of BC            





To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message