From owner-freebsd-bugs Fri Oct 6 12:50:13 2000 Delivered-To: freebsd-bugs@freebsd.org Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21]) by hub.freebsd.org (Postfix) with ESMTP id B4A5C37B502 for ; Fri, 6 Oct 2000 12:50:03 -0700 (PDT) Received: (from gnats@localhost) by freefall.freebsd.org (8.9.3/8.9.2) id MAA81532; Fri, 6 Oct 2000 12:50:03 -0700 (PDT) (envelope-from gnats@FreeBSD.org) Date: Fri, 6 Oct 2000 12:50:03 -0700 (PDT) Message-Id: <200010061950.MAA81532@freefall.freebsd.org> To: freebsd-bugs@FreeBSD.org Cc: From: Dann Lunsford Subject: Re: misc/21775: Add info on port usage to services Reply-To: Dann Lunsford Sender: owner-freebsd-bugs@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org The following reply was made to PR misc/21775; it has been noted by GNATS. From: Dann Lunsford To: FreeBSD-gnats-submit@freebsd.org Cc: Subject: Re: misc/21775: Add info on port usage to services Date: Fri, 6 Oct 2000 12:45:06 -0700 On Thu, Oct 05, 2000 at 04:44:52PM -0400, Chris Faulhaber wrote: > On Thu, Oct 05, 2000 at 01:24:21PM -0700, Dann Lunsford wrote: > > > >Description: > > > > add usage info to /etc/services. TCP port 98 is officially tacnews but is > > used by Red Hat Linux's linuxconf tool as well. I've seen a lot of port > > scans for this, and thought it would be good to have this noted in > > services. > > > > -tacnews 98/tcp #TAC News > > +tacnews 98/tcp #TAC News; Red Hat linuxconf > > Did IANA officially assign this port to RedHat? And do we really want to > start adding a bunch of cruft into /etc/services about systems using > unassigned ports? I don't think IANA had anything to do with it, actually. I just checked the IANA site, and can find no reference to Red Hat stuff in the port numbers list. But there are notices in that list about unoffical port usages, and incorrect and unauthorized port grabs. My motive in this PR was to get similar info into our services file, at least for some of the more egregions cases. In this particular instance, I spent about an hour searching various places before I found that RH had usurped the tacnews port for linuxconf, and that versions of linuxconf were remotely exploitable, which explained the scans. I looked in /etc/services first, of course; if a note had been there, that hour could have been spent elsewhere :-). I am mostly in sympathy with the "anti cruft" attitude, but is info that saves an admin some time or effort really cruft? In any case, the final decision is yours as to what gets distributed with the system; I can always add my own notes to my copy. Thanks for the consideration. -- Dann Lunsford The only thing necessary for the triumph of evil dann@greycat.com is that men of good will do nothing. -- Cicero To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message