Date: Sun, 8 Oct 2000 12:56:19 -0700 (PDT) From: Matt Dillon <dillon@earth.backplane.com> To: Warner Losh <imp@village.org> Cc: Jeroen Ruigrok van der Werven <jruigrok@via-net-works.nl>, cvs-committers@FreeBSD.ORG, cvs-all@FreeBSD.ORG Subject: Re: cvs commit: src/etc inetd.conf Message-ID: <200010081956.e98JuJB00920@earth.backplane.com> References: <200010081931.e98JVFV00782@earth.backplane.com> <20001008200835.C73177@lucifer.bart.nl> <20001008192311.B73177@lucifer.bart.nl> <200010081245.FAA23881@freefall.freebsd.org> <200010081713.LAA02405@harmony.village.org> <20001008192311.B73177@lucifer.bart.nl> <200010081747.LAA02635@harmony.village.org> <200010081836.MAA03208@harmony.village.org> <200010081942.NAA03812@harmony.village.org>
next in thread | previous in thread | raw e-mail | index | archive | help
We're kinda in a 'changing of the guard' situation in regards to
telnet, rsh, rcp, rlogin, verses ssh. And we have been for about a
year. The only thing holding the process up has been the patent issue
and that is now gone.
'finger' is also reaching the end of its life cycle, as more and more
people move towards personal machines and away from university campus /
ISP style shell boxes... and have web sites rather then logins. Finger,
at least, is so simple that it can be thought of as secure, and is also
sandboxed (the last root hole for finger was discovered in the 80's :-)).
Even if we don't disable these old services by default in 4.x, I think
we should absolutely disable them when the 5.0 release comes around. ssh
is the only acceptable solution for a UNIX sysadmin in today's world.
ntalkd is harder - still useful for sysops and users, but DOSable and
complex enough to possibly be insecure. But at least it's sandboxed in
FreeBSD.
I think we should also sandbox 'named' by default now too (in 5.x,
possibly also in 4.x), rather then simply as an option. It is only
prudent considering the massive, massive rewriting and continuing work
that has been occuring in the bind distribution. And, also, I've had
the rc.conf named sandboxing option in there for over a year now and
I think people have become more knowledgeable in regards to it. For 5.x,
definitely.
-
Do any committers have any objections to me disabling ntalk, finger,
telnet, rsh, and ftp by default in -current? And sandboxing 'named' by
default in -current?
-Matt
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200010081956.e98JuJB00920>