Date: Sat, 8 Dec 2001 06:40:58 +0100 From: Brad Knowles <brad.knowles@skynet.be> To: "Anthony Atkielski" <anthony@freebie.atkielski.com>, "James Howard" <howardjp@Glue.umd.edu>, "Brad Knowles" <brad.knowles@skynet.be> Cc: "Konstantinos Konstantinidis" <kkonstan@duth.gr>, <chat@FreeBSD.ORG> Subject: Re: A breath of fresh air.. Message-ID: <a0510100cb83754b63467@[10.0.1.16]> In-Reply-To: <00de01c17fa1$06539e10$0a00000a@atkielski.com> References: <Pine.GSO.4.21.0112071730170.8200-100000@y.glue.umd.edu> <006c01c17f70$8782de50$0a00000a@atkielski.com> <a05101005b837406671a6@[10.0.1.16]> <00de01c17fa1$06539e10$0a00000a@atkielski.com>
next in thread | previous in thread | raw e-mail | index | archive | help
At 5:30 AM +0100 on 2001/12/08, Anthony Atkielski wrote:
> How do you get out of the GUI and back to a simple console?
Pull up a shell window.
> Hmm ... so what are they using for a GUI? I thought one of the huge
> advantages to UNIX was the variety of X servers and clients available, but
> you seem to be saying that this Mac version of UNIX fails to adhere to
> standards for its GUI.
X is not necessarily a "standard", certainly not one that you are
required to implement. I know of plenty of Unix servers around the
world that don't implement any kind of GUI at all.
Moreover, downloading and installing X is not that big of a deal.
Indeed, I believe that there's a package management tool called
"Fink" that makes this painfully easy.
> Well, what daemons are running? I presume that this UNIX system provides
> all the usual commands?
What's running currently? I dunno, lemme pull up a shell window and see:
% ps -ax
PID TT STAT TIME COMMAND
1 ?? SLs 0:00.01 /sbin/init
2 ?? SL 0:04.31 /sbin/mach_init
41 ?? Ss 0:00.04 kextd
63 ?? Ss 0:05.20 /System/Library/Frameworks/ApplicationServices.framew
65 ?? Ss 21:54.90 /System/Library/CoreServices/WindowServer
67 ?? Ss 0:13.40 update
70 ?? Ss 0:00.00 dynamic_pager -H 40000000 -L 160000000 -S 80000000 -F
123 ?? Ss 0:00.64 /sbin/autodiskmount -va
148 ?? Ss 0:02.13 configd
178 ?? Ss 0:00.42 syslogd
184 ?? Ss 0:00.03 /usr/libexec/CrashReporter
206 ?? Ss 0:02.68 netinfod -s local
213 ?? Ss 0:02.64 lookupd
226 ?? Ss 0:01.49 /System/Library/CoreServices/coreservicesd
233 ?? Ss 0:00.01 inetd
250 ?? Ss 0:00.21 /System/Library/CoreServices/SecurityServer
258 ?? Ss 0:00.27 cron
262 ?? Ss 0:03.82 /System/Library/CoreServices/loginwindow.app/loginwin
265 ?? Ss 0:03.21 /System/Library/CoreServices/pbs
269 ?? S 0:04.57 /System/Library/CoreServices/Finder.app/Contents/MacO
270 ?? S 0:05.90 /System/Library/CoreServices/Dock.app/Contents/MacOS/
271 ?? S 12:20.16 /System/Library/CoreServices/SystemUIServer.app/Conte
273 ?? S 0:00.33 /Applications/iTunes.app/Contents/Resources/iTunesHel
274 ?? R 30:53.20 /System/Library/CoreServices/Classic Startup.app/Cont
275 ?? S 42:42.92 /Applications/Eudora Application Folder/Eudora 5.1 (O
277 ?? S 0:10.79 /Applications/System Preferences.app/Contents/MacOS/S
278 ?? Ss 0:00.27 /System/Library/PrivateFrameworks/Admin.framework/Res
279 ?? S 0:02.80 /Applications/Utilities/Terminal.app/Contents/MacOS/T
299 ?? Ss 0:00.01 automount -m /Network/Servers -fstab -m /automount -s
394 ?? S<s 0:04.57 /usr/sbin/ntpd -f /var/run/ntp.drift -p /var/run/ntpd
608 ?? S 0:24.27 /Applications/Opera 5.0b2.393.Cbn/Opera.app/Contents/
609 std Ss 0:00.12 -tcsh (tcsh)
614 std R+ 0:00.01 ps -ax
There's a lot of more unusual looking stuff here (mostly Aqua
applications), but there are also some pretty familiar faces -- init,
update, syslogd, inetd, cron, ntpd, automount, etc.... Note that I
haven't turned on any of the additional network services for this
machine, so you don't see sendmail, BIND, Apache, sshd, or any of
those other standard names that you might recognize.
As for what standard commands are available, let's see:
% ls /bin /usr/bin /sbin /usr/sbin
/bin:
[ date ed ls pwd sleep zsh
cat dd expr mkdir rcp stty
chmod df hostname mv rm sync
cp domainname kill pax rmdir tcsh
csh echo ln ps sh test
/sbin:
SystemStarter fsck_msdos mount_afp mount_volfs restore
autodiskmount halt mount_cd9660 mount_webdav route
badsect ifconfig mount_cddafs newfs routed
clri init mount_devfs newfs_hfs rrestore
dmesg ipfw mount_fdesc newfs_msdos shutdown
dump kextload mount_hfs nfsd slattach
dumpfs kextunload mount_mfs nfsiod startslip
dynamic_pager kmodload mount_msdos nologin tunefs
fastboot kmodunload mount_nfs ping umount
fasthalt mach_init mount_smbfs quotacheck
fsck mknod mount_synthfs rdump
fsck_hfs mount mount_udf reboot
/usr/bin:
CFInfoPlistConverter h2xs podchecker
a2p hdid podselect
addftinfo hdiutil policytool
addr head pr
aexml headerdoc2html printenv
afmtodit heap printf
appleping hexdump procmail
appletviewer host projectInfo
apply hostinfo psbb
apropos hoststat pstruct
ar hpftodit purgestat
arch htdigest quota
as htpasswd ranlib
asa id rcs
at ident rcs-checkin
at_cho_prn idlj rcs2log
atlookup ifnames rcsclean
atos indent rcsdiff
atprint indxbib rcsmerge
atq install rcz
atrm jam redo_prebinding
atstatus jar refer
autoconf jarsigner renice
autoheader java reset
autoreconf java-rmi.cgi rev
autoscan javac rlog
autoupdate javaconfig rlogin
awk javadoc rmail
b2m javah rmic
banner javap rmid
basename javatool rmiregistry
batch jdb rpcgen
bc jikes rs
biff join rsh
bison jot rsync
bridget kdestroy ruptime
bsdmake keytool rwho
c++ kinit s2p
c++filt klist sample
c2ph kpasswd sc_usage
c_rehash ktrace sccs
cacheCoveredChars lam scp
cal last script
calendar lastcomm sdiff
cap_mkdb latency sed
cc ld segedit
checknr leaks serialver
chflags leave sftp
chfn less shar
chgrp lessecho shlock
chpass lesskey showmount
chsh lex size
ci lex++ sliceprint
cksum libtool slogin
clear lipo smbutil
cmp lkbib soelim
cmpdylib locate sort
co lock splain
col lockfile split
colcrt logger ssh
colrm login ssh-add
column logname ssh-agent
comm look ssh-keygen
compileHelp lookbib ssh-keyscan
compress lorder states
config lpc strings
cpio lpq strip
cpp lpr su
crontab lprm sudo
ctags lsbom sum
curl m4 sw_vers
cut machine tail
cvs mail talk
cvs-diff-branch mailq tar
cvs-make-branch mailstat tbl
cvs-merge-branch make tclsh
cvs-revert malloc_history tclsh8.3
cvs-view-diffs man tcopy
cvsbug md tee
dbmmanage merge telnet
dc mesg texi2html
defaults mig tfmtodit
diff mkafmmap tftp
diff3 mkbom tiff2icns
diffpp mkdep tiffutil
diffstat mkfifo time
dig mklocale tnameserv
dirname mkservdb top
ditto mkstr tops
dnsquery more touch
dprofpp msgs tput
du native2ascii tr
egrep ncftp troff
emacs neqn true
emacs-20.7 newaliases tset
emacsclient nfsstat tsort
enscript nibtool tty
env nice ul
eqn nicl uname
error nidump uncompress
etags nifind unexpand
ex nigrep unifdef
expand niload uniq
expn nireport units
extcheck niutil unvis
false nm unzip
fcache nmedit update_prebinding
fetchmail nohup uptime
fgrep nroff users
file nslookup uudecode
find nsupdate uuencode
find2perl ntpq uuidgen
finger od vacation
fixPrecomps open vers_string
flex opendiff vgrind
flex++ openssl vi
fmt osacompile view
fold osalang vis
formail osascript vm_stat
fpr otool vmmap
from over w
fs_usage package wall
fsplit pagesize wc
fstat pagestuff what
ftp passwd whatis
gatherheaderdoc paste whereis
gcc patch which
gdb pbcopy who
genstrings pbpaste whoami
getopt pbxbuild whois
glibtool pdump window
glibtoolize pear write
gm4 perl xargs
gnumake perl5.6.0 xstr
gnutar perlbug yacc
gprof perlcc yes
grep perldoc ypcat
grodvi pfbtops ypmatch
groff php-config ypwhich
grog phpextdist zcat
grohtml phpize zcmp
grolj4 pic zdiff
grops pico zforce
grotty pl zgrep
groups pl2pm zip
gunzip pod2html zmore
gzcat pod2latex znew
gzexe pod2man zprint
gzip pod2text
h2ph pod2usage
/usr/sbin:
AppleFileServer ioreg ntpdc sshd
AppleSystemProfiler iostat ntptrace stdethers
DirectoryService ipconfig nvram stdhosts
Print irpd pcscd sysctl
ab kgmon pdisk syslogd
ac kmodstat pmap_dump tcpdchk
accton kmodsyms pmap_set tcpdmatch
apachectl logresolve portmap tcpdump
appletalk lookupd pppd tickadj
apxs lsof praliases tim
arp mailstats pstat timed
automount makedbm pwd_mkdb timedc
bless makemap quot timutil
bootparamd mkextcache quotaon traceroute
bpwhoami mkfile rarpd trpt
catman mountd repquota trsp
chown mtree revnetgroup update
chroot named rmt vipw
configd named-bootconf rotatelogs visudo
cron natd rpcinfo vsdbutil
dev_mkdb ndc rwhod ypbind
disktool netinfod scselect ypinit.sh
edquota netstat scutil yppoll
fdisk newclient sendmail yppush
httpd nibindd sliplogin ypset
inetd nidomain slp_reg ypxfr
ioalloccount ntpd slpd zdump
ioclasscount ntpdate spray zic
Now, the additional stuff that I have installed myself:
% ls /usr/local/bin
bunzip2 bzcat bzip2 bzip2recover nmap
Seems mostly standard to me. If anything, what they've done here
is largely add a few things and maybe move a few things around.
> Indeed, if it is a UNIX system in every sense of the word, how can you avoid
> knowing whether or not it allows remote connections? Isn't there any
> indication of this when the machine boots, before it starts the GUI?
Well, according to netstat, only port 1033 is currently being listened to:
% netstat -an
Some ip sockets may have been created or deleted
Some icmp sockets may have been created or deleted
Some igmp sockets may have been created or deleted
Active Internet connections (including servers)
Proto Recv-Q Send-Q Local Address Foreign Address (state)
tcp 0 0 127.0.0.1.1033 127.0.0.1.878 ESTABLISHED
tcp 0 0 127.0.0.1.878 127.0.0.1.1033 ESTABLISHED
tcp 0 0 127.0.0.1.1033 127.0.0.1.49161 ESTABLISHED
tcp 0 0 127.0.0.1.49161 127.0.0.1.1033 ESTABLISHED
tcp 0 0 127.0.0.1.1033 127.0.0.1.863 ESTABLISHED
tcp 0 0 127.0.0.1.863 127.0.0.1.1033 ESTABLISHED
tcp 0 60 127.0.0.1.1033 127.0.0.1.816 ESTABLISHED
tcp 0 0 127.0.0.1.816 127.0.0.1.1033 ESTABLISHED
tcp 0 0 127.0.0.1.1033 *.* LISTEN
udp 0 0 *.49185 *.*
udp 0 0 *.49180 *.*
udp 0 0 *.49175 *.*
udp 0 0 10.0.1.16.123 *.*
udp 0 0 127.0.0.1.123 *.*
udp 0 0 *.123 *.*
udp 0 0 127.0.0.1.49155 127.0.0.1.899
udp 0 0 127.0.0.1.49154 127.0.0.1.899
udp 0 0 *.899 *.*
udp 0 0 *.49153 *.*
udp 0 0 127.0.0.1.1033 *.*
udp 0 0 *.514 *.*
udp 0 0 *.68 *.*
Active LOCAL (UNIX) domain sockets
Address Type Recv-Q Send-Q Inode Conn Refs Nextref Addr
28b6ab8 stream 0 0 0 28b6b28 0 0
28b6b28 stream 0 0 0 28b6ab8 0 0
28b6c78 stream 0 0 0 28b6e38 0 0
28b6e38 stream 0 0 0 28b6c78 0 0
28b6c08 stream 0 0 0 28b6c40 0 0
28b6c40 stream 0 0 0 28b6c08 0 0
28b6d20 stream 0 0 0 0 0 0
28b6e00 stream 0 0 0 28b6f50 0 0
28b6f50 stream 0 0 0 28b6e00 0 0
28b6ee0 stream 0 0 298c1e0 0 0 0
/var/run/pppconfd
28b6a48 dgram 0 0 0 28b6ea8 0 28b6af0
28b6af0 dgram 0 0 0 28b6ea8 0 28b6d90
28b6d90 dgram 0 0 0 28b6ea8 0 28b6f18
28b6f18 dgram 0 0 0 28b6ea8 0 28b6d58
28b6d58 dgram 0 0 0 28b6ea8 0 28b6dc8
28b6dc8 dgram 0 0 0 28b6ea8 0 28b6e70
28b6e70 dgram 0 0 0 28b6ea8 0 0
28b6ea8 dgram 0 0 2b23e50 0 28b6a48 0
/var/run/syslog
28b6f88 dgram 0 0 0 28b6fc0 28b6fc0 0
28b6fc0 dgram 0 0 0 28b6f88 28b6f88 0
But then, as I said, I haven't enabled any of the additional
networking services (such as sshd), so you won't see those ports
open. Of course, I'm also behind a firewall doing NAT, so even if
you were to try to probe my machine remotely, you wouldn't see even
this much.
Since I haven't enabled sshd, I don't know if there is any
notification early in the boot process -- it goes too quickly for me
to see anything. Moreover, thinking back to all the hundreds and
hundreds of other Unix servers that I have been responsible for at
various times since becoming a Unix system administrator in 1989, I
can't think of a single one that ever told me that it was listening
for anything like telnet connections on port 23, ftp connections on
ports 20 & 21, SMTP connections on port 25, or ssh connections on
port 22.
--
Brad Knowles, <brad.knowles@skynet.be>
H4sICIFgXzsCA2RtYS1zaWcAPVHLbsMwDDvXX0H0kkvbfxiwVw8FCmzAzqqj1F4dy7CdBfn7
Kc6wmyGRFEnvvxiWQoCvqI7RSWTcfGXQNqCUAnfIU+AT8OZ/GCNjRVlH0bKpguJkxiITZqes
MxwpSucyDJzXxQEUe/ihgXqJXUXwD9ajB6NHonLmNrUSK9nacHQnH097szO74xFXqtlbT3il
wMsBz5cnfCR5cEmci0Rj9u/jqBbPeES1I4PeFBXPUIT1XDSOuutFXylzrQvGyboWstCoQZyP
dxX4dLx0eauFe1x9puhoi0Ao1omEJo+BZ6XLVNaVpWiKekxN0VK2VMpmAy+Bk7ZV4SO+p1L/
uErNRS/qH2iFU+iNOtbcmVt9N16lfF7tLv9FXNj8AiyNcOi1AQAA
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-chat" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?a0510100cb83754b63467>