Date: Tue, 17 Nov 1998 16:27:54 -0500 From: Garance A Drosihn <drosih@rpi.edu> To: William McVey <wam@sa.fedex.com> Cc: freebsd-security@FreeBSD.ORG Subject: Re: Would this make FreeBSD more secure? & sendmail changes in OpenBSD 2.4 Message-ID: <v0401170fb2779962d724@[128.113.24.47]> In-Reply-To: <199811172014.OAA05291@s07.sa.fedex.com>
next in thread | previous in thread | raw e-mail | index | archive | help
At 2:14 PM -0600 11/17/98, William McVey wrote: >Cliff Skolnick wrote: >> I am more concerned about stand alone daemons like sendmail, >> syslog, apache, etc. > > Most of these services could easily be modified to start from > inetd as wait services. Basically, inetd does the port binding, > setuid-ing, and execing, just like it always does. As I've > mentioned before, sendmail can definitely run in this manner. > So could most web servers. Seems to me the performance implications for web serving is not very attractive. In my case I just go with a minimalist web server (not apache, I think the name is just "thtppd") to reduce the security exposure. (well, it reduces the feature set too, of course, but I don't need the missing features). --- Garance Alistair Drosehn = gad@eclipse.its.rpi.edu Senior Systems Programmer or drosih@rpi.edu Rensselaer Polytechnic Institute To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?v0401170fb2779962d724>