|
| |
| | Administration Reference |
 | | Several configuration changes are necessary for token passing to work correctly with the AFS version of the inetd program. | | | See the UNIX manual page for the inetd program. | | | The machine's initialization files ( /etc/rc file or equivalent) must invoke both the standard inetd and inetd.afs programs. |
|
http://www.cs.rose-hulman.edu/docs/afs-doc/html/AdminRef/auarf179.htm
|
|
| |
| | inetd(1m) |
| | This can cause a race condition where the inetd program selects on the socket and the server program reads from the socket. | | | When tracing is enabled, inetd uses the syslog facil- ity code daemon and notice priority level. | | | If /etc/inetd.conf is not present, inetd reads the configuration information from /etc/inet/inetd.conf. |
|
http://www.cs.duke.edu/cgi-bin/man.cgi?section=1m&topic=inetd
|
|
| |
| | inetd(8) |
| | The server program is invoked with the service socket as its standard input, output and error descriptors. | | | To do this you specify a protocol of ``unix'' and spec- ify the UNIX domain socket as the service-name. | | | Internal services may be run on UNIX domain sockets, in the usual way. |
|
http://www.omc.net/cgi-bin/man.cgi?section=8&topic=inetd
|
|
| |
| | inetd |
| | Even then, it's a good idea to supplement inetd with Wietse Venema~s TCP wrappers package, which logs all connection attempts and restricts access to daemons, depending on who is attempting to connect to them. | | | After signalling, wait a minute and then check the log files for error messages related to your changes (inetd logs errors to syslog under the "daemoe' facility). | | | Some daemons (such as those associated with NIS and NFS) rely on a further layer of indirection known as the Remote Procedure Call (RPC) system. |
|
http://home.comcast.net/~joeo.1/cbr/unix/proc/inetd.html
|
|
| |
| | hpux inetd.1m |
| | AUTHOR inetd was developed by HP and the University of California, Berkeley. | | | Cannot configure inetd None of the services/servers listed in the configuration file could be set up properly, due to configuration file errors. | | | The following options can be used with inetd: -c Reconfigure the Internet daemon; in other words, force the current inetd to re-read /etc/inetd.conf. |
|
http://www.informatik.uni-frankfurt.de/doc/man/hpux/inetd.1m.html
|
|
| |
| | Feature: Amateur Fortress Building in Linux Part 1 |
| | These databases are in a binary format created from a text file by the tcprules program. | | | Normally inetd is paired with tcpwrappers; inetd itself doesn't care who connects to it but the 'wrapper' checks | | | There are several little helper programs that, in much the same way, setup something and then run another program in that environment. |
|
http://rootprompt.org/article.php3?article=903
|
|
| |
| | [No title] |
| | inetd creates a socket for each listed service, and adds the socket to a fd_set given to select(). | | | inetd typically uses select to watch multiple sockets for input. |
|
http://www.cs.rpi.edu/~hollingd/netprog/notes/inetd/inetd.ppt
|
|
| |
| | Inetd and Network Services |
| | The inetd daemon is configured by modifying the /etc/inetd.conf file. | | | To implement the tcp wrapper in the services provided by inetd, the /etc/inetd.conf file must be modified to trick inetd into running tcpd rather than the actual service. | | | The tcpd wrapper daemon provides an extra level of protection to network services. |
|
http://www.comptechdoc.org/os/linux/howlinuxworks/linux_hlnetsvc.html
|
|
| |
| | Chapter 22. The Internet Super Server inetd |
| | What inetd (8) is doing is software multiplexing. | | | This field tells inetd (8) if it should wait for a server program to return or to continue processing new connections immediately. | | | The internet super server, inetd, is an approach to this problem. |
|
http://www.netbsd.org/guide/en/chap-inetd.html
|
|
| |
| | Understanding inetd |
| | This must be a protocol listed in the protocols file (usually found in the same directory as the inetd configuration file). | | | This file is usually found in the same directory as the inetd configuration file. | | | This list (or, in practice, part of it) is kept in a Unix system's services file so that programs can convert service names to port numbers. |
|
http://www.uwsg.indiana.edu/usail/network/services/inetd.html
|
|
| |
| | SSLWrap |
| | For example, imapd generally must be run as root to access user mailboxes, and since it is run out of inetd it is not setuid root. | | | One important caveat with using -exec mode is that sslwrap has to run as whatever user is necessary to run the program you are executing. | | | You can now wrap services on computers other than the one you're running sslwrap on. |
|
http://www.rickk.com/sslwrap
|
|
| |
| | Files Reference - inetd.conf File Format for TCP/IP |
| | Contains either the wait, the nowait, or the SRC instruction for datagram sockets and the nowait instruction for stream sockets. | | | The SRC instruction works like wait, but instead of forking and waiting for the child to die, it does a startsrc on the subsystem and stores information about the starting of the service. | | | Contains either the wait or the nowait instruction for datagram sockets and the nowait instruction for stream sockets. |
|
http://publib16.boulder.ibm.com/doc_link/en_US/a_doc_lib/files/aixfiles/inetd.conf.htm
|
|
| |
| | inetd |
| | Changing every program to support xinetd as well as inetd (or any other *netd like program) is a lot of effort, and if another derivative appears, you'll have another program to support. | | | However, almost none of the available packages really support xinetd (ie: it's up to the admin to configure xinetd to run, and configuring it to call programs), so it's a problem that needs to be sorted out at some stage in the future. | | | update-inetd was written specifically for inetd only, so such a change doesn't stop xinetd from working. |
|
http://lists.ubuntu.com/archives/sounder/2004-September/000597.html
|
|
| |
| | Doug's /etc/inetd.conf and /var/adm/inetd.sec info |
| | If you change the /etc/inetd.conf file in any way, you'll need to have inetd reread the config file. | | | Also, when you modify this file you do not need to run the "inetd -c" command. | | | For example, telnet is not commented out in the inetd.conf file. |
|
http://web.tampabay.rr.com/batcave/inetd_conf.htm
|
|
| |
| | I-Appliance BBS - inetd/telnetd/ftpd (again) |
| | the executables inetd and ftpd in inetd.tar are 6.1 versions. | | | The libc.so.1 file must be saved in the /nto/lib directory as described above prior to execution of the lines below. | | | Once you guys get this thing running for sure would you mind summarizing the files and maybe creating a tar or zip for us not so qnx savy users? |
|
http://www.linux-hacker.net/cgi-bin/UltraBoard/UltraBoard.pl?Action=ShowPost&Board=3Com_Audrey&Post=494&Idle=0&Sort=0&Order=Descend&Page=0&Session=
|
|
| |
| | Protecting HP-UX Systems Against SATAN |
| | Inetd and /usr/adm/inetd.sec The two important functions of a TCP wrapper program are connection logging and access control. | | | Although this information is of marginal significance, it does add to the intruder's list of information about your system. | | | The file inetd.sec allows the system administrator to control which hosts (or networks in general) are allowed to use the system remotely. |
|
http://ciac.llnl.gov/ciac/bulletins/f-19.shtml
|
|
| |
| | LKML: VDA: Re: Could NFS daemons be started via inetd? |
| | >> >> I tried to arrange these daemons to be run by inetd >> but after I issue an NFS mount command inetd starts spawning >> tons on rpc.mountd daemons. | | | Please enlighten me: do daemons need to be writted with some support code specific for inetd in order to be compatible with it? | | | Re: Could NFS daemons be started via inetd? |
|
http://lkml.org/lkml/2001/8/25/14
|
|
| |
| | Inetd udp port spoofing DOS attack |
| | On my Linux 2.0.29, inetd goes to 99% CPU when source/dest are the same machine with any of these 4 ports. | | | There are two main uses of this program: - generate a packet which will make inetd reply to itself continuously on a given host. | | | This will slow down a system because inetd will use most of the CPU to reply to its own requests. |
|
http://www.insecure.org/sploits/inetd.internal_udp_ports.DOS.attack.html
|
|
| |
| | Linux inetd port theft vulnerability |
| | For a free program to automate scanning your network for vulnerable hosts and services, check out my network mapping tool, nmap. | | | I think it's bad to assume that an unprivileged user can't > cause a daemon to die. | | | Inetd clos()es its sockets sometimes which (if they are unpriviliged) allows a user to just swipe them to put up a trojan service or whatever. |
|
http://www.insecure.org/sploits/inetd.port.theft.html
|
|
| |
| | The inetd Super-Server |
| | The super-server commonly used is inetd, the Internet Daemon. | | | This must be a valid protocol name found in the protocols file, also explained below. | | | They include chargen which simply generates a string of characters, and daytime which returns the system's idea of the time of day. |
|
http://www.tldp.org/LDP/nag/node125.html
|
|
| |
| | FreeBSD inetd ident Server Vulnerability |
| | Users can read the first 16 bytes of wheel-accessible files only if the inetd internal ident server is enabled. | | | Due to ident using root's group permissions, users may read the first 16 (excluding initial whitespace) bytes of wheel-accessible files. | | | Background The inetd ident server is an implementation of the RFC1413 identification server which returns the local username of the user connecting to a remote service. |
|
http://www.ciac.org/ciac/bulletins/l-038.shtml
|
|
| |
| | inetd from FOLDOC |
| | Nearby terms: Industrial Programming, Inc. « Industrial Robot Language « Industry Standard Architecture « inetd » inews » infant mortality » infeasible path |
|
http://wombat.doc.ic.ac.uk/foldoc/foldoc.cgi?inetd
|
|
| |
| | Linux Security: Securing inetd, hosts.allow, and hosts.deny |
| | # # If you make changes to this file, either reboot your machine or send the # inetd a HUP signal: # Do a "ps x" as root and look up the pid of inetd. | | | # The inetd will re-read this file whenever it gets that signal. | | | This is my desktop, I don't need any daemons or services other than auth(man inetd) running on this box. |
|
http://www.userlocal.com/security/securinginetdetc.php
|
|
| |
| | Feature: They Can't Crack What They Can't Find |
| | For example if we wanted to turn off inetd we would find all of the startup files for inetd and then remove them: | | | This will cause it to re-read it's configuration file. | | | The file /etc/inetd.conf controls what daemons are started by inetd. |
|
http://rootprompt.org/article.php3?article=922
|
|
| |
| | Current Status of IPv6 Support for Networking Applications |
| | rlinetd is an interesting inetd replacement, with advanced socket filtering support and tcp wrapping capabilities. | | | This code is based on the original netkit package, which is no longer maintained. | | | openbsd-inetd is a port of the OpenBSD inetd daemon with some debian-specific features. |
|
http://www.deepspace6.net/docs/ipv6_status_page_apps.html
|
|
| |
| | dBforums - inetd.conf services questions ??? |
| | Which, is part of why I prefer to use the inetd replacement, xinetd. | | | I always comment out the entire inetd.conf file. | | | I mean, if inetd is to be listening for nothing, then why |
|
http://dbforums.com/t529458.html
|
|
| |
| | stunnel - multiplatform SSL tunneling proxy |
| | The stunnel program is designed to work as an SSL encryption wrapper between remote client and local (inetd-startable) or remote server. | | | It can be used to add SSL functionality to commonly used inetd daemons like POP2, POP3, and IMAP servers without any changes in the programs' code. |
|
http://stunnel.mirt.net
|
|
| |
| | inetd 0.2.7 Package |
| | I have "stolen" the binaries and config file from zipslack and made a package of it. | | | inetd is a program that automatically starts a program that is associated with a port. | | | E.G. samba swat is only started when there is a request on port 901 and there for not taking any system resources while there is no requests. |
|
http://www.valkovi.org/freescosoft/html/FREESCO/packages/v0.2.7/inetd.htm
|
|
| |
| | inetd - OneLook Dictionary Search |
| | inetd : Free On-line Dictionary of Computing [ home, info ] | | | Tip: Click on the first link on a line below to go directly to a page where "inetd" is defined. | | | We found 3 dictionaries with English definitions that include the word inetd : |
|
http://www.onelook.com/cgi-bin/cgiwrap/bware/dofind.cgi?word=inetd
|
|
| |
| | [2600] inetd.conf |
| | If that has files in it then your > distro is using xinetd instead. | | | > > If you're sure your distro is using xinetd (which I would assume) then > you can get rid of inetd. |
|
http://lists.wi2600.org/pipermail/2600/2002-August/012847.html
|
|
| |
| | inetd & kq Performance |
| | This allows you to reduce the lookup you have to do when you need to handle an event. | | | I still need testers to test the code to make sure there aren't any behavior changes and/or bugs in the code. | | | The old inetd would use a pipe to tell the main thread of execution when a signal was delivered. |
|
http://people.freebsd.org/~jmg/inetd.kq.html
|
|
| |
| | Securing AIX Network Services |
| | This configuration file for the inetd daemon (the "super-server") contains numerous entries for services that are useful and possibly necessary, but also many of dubious value in a secured environment. | | | Unless your environment requires the use of PC-NFS, this inetd.conf entry should be disabled. | | | The snmpd and dpid2 daemons both provide Simple Network Management Protocol services, which can be useful for monitoring the status of the system, but were not designed with a good security model and having multiple known vulnerabilities. |
|
http://www.blacksheepnetworks.com/security/resources/securing-aix-network-services.html
|
|
| |
| | The inetd - /etc/inetd.conf file |
| | file to see what services are being offered by your inetd program. | | | file tells inetd which ports to listen to and what server to start for each port. | | | Services that you do not need to offer should be disabled and uninstalled so that you have one less thing to worry about, and attackers have one less place to look for a hole. |
|
http://www.faqs.org/docs/securing/chap5sec36.html
|
|
| |
| | [No title] |
| | The record is 6MB, achieved by Solaris; 20 copies of inetd-chew eat up 120MB of virtual memory, destroying most other processes on the system. | | | The amount of virtual memory chewed up by inetd when inetd-chew is running depends on the target operating system. | | | My inetd-chew program maintains 30 connections to the finger port on a target host. |
|
http://cr.yp.to/docs/inetd.html
|
|
| |
| | The Slackware Linux Project: Slackware Security Advisories |
| | Any site running services through inetd that they would like protected from this simple DoS attack should upgrade to the new inetd package immediately. | | | Even having inetd look at the source IP and try to limit only the source of the attack would be problematic since TCP source addresses are so easily faked. | | | Once upon a time, this was an intentional feature of inetd, but in today's world it has become a bug. |
|
http://www.slackware.com/security/viewer.php?l=slackware-security&y=2003&m=slackware-security.418022
|
|
| |
| | rhn.redhat.com Red Hat Support |
| | Updated inetd packages available for Red Hat Linux 6.2 | | | The inetd server as shipped with Red Hat Linux 6.2 fails to close sockets |
|
http://www.redhat.com/support/errata/RHSA-2001-006.html
|
|
| |
| | INETD - Ýnternet Teknolojileri Derneði |
| | Ülkemizin bilgi teknolojileri alanýnda teknoloji üretmesi gerektiðine inanan INETD, bu konularda araþtýrma ve çalýþmalara elinden geldiðince destek vermeyi, ülkenin ihtiyaç duyduðu uzman insan gücünün yetiþmesine katkýda bulunmaya çalýþacaktýr. | | | Internet'in ülkemiz için yaþamsal önemde olduðuna inanan INETD, bu konularda oluþan geliþmeler, sorunlar ve olanaklarýn tartýþýldýðý bir platform olmayý hedeflemektedir. | | | INETD Internet Teknolojileri'ne ilgi duyan, bu etkinliklerin geliþmesine katkýda bulunmak isteyen kiþi ve kurumlarý INETD'ye katýlmaya, etkinliklerimizi desteklemeye ve sponsor olmaya çaðýrmaktadýr. |
|
http://www.inetd.org.tr
|
|
| |
| | ProFTPD mini-HOWTO - ServerType |
| | of inetd from the command line (or from some shell wrapper script), this kind of error message will appear in your | | | What are these "inetd" and "standalone" types, and why does one need to choose one or the other? | | | The purpose of this directive is to choose between the two operating modes for almost all Unix network servers: does the server listen on its port for client requests itself, or does the server let some other process do the listening, and call the server when needed? |
|
http://castaglia.org/proftpd/doc/contrib/ProFTPD-mini-HOWTO-ServerType.html
|
|
| |
| | Linux From Scratch HOWTO: Installing Internet Servers |
| | This makes it easier to start and stop individual processes without modifying the /etc/inetd.conf file constantly. | | | However, in the telnetd case it's better to run it via inetd, since telnetd doesn't seem to respawn itself when the last user logs out. | | | Lynx can use this library to compress certain files. |
|
http://www.linuxgazette.com/issue49/misc/beekmans/LFS-HOWTO-15.html
|
|
| |
| | vnc java applet http port and inetd |
| | > port = 5800 > server_args = :0 -rfbport 5900 -httpd /usr/local/vnc/classes -httpport 5800 -query localhost > } > > but it doesn't work Thats because the way inetd works: It just hooks STDIO from the app to the port. | | | The reason for this is the connection between the viewer and inetd: If the browser reloads, the javaviewer restarts. | | | Hence on the close of the old javaviewer, the connection with inetd gets lost so inetd cleans the connection and kills Xvnc, which in turn just crashes the apps. |
|
http://www.realvnc.com/pipermail/vnc-list/2002-October/033818.html
|
|
| |
| | SecuriTeam.com ™ - Default Configuration of InetD Allows Attackers to Initiate a DoS |
| | Default Configuration of InetD Allows Attackers to Initiate a DoS | | | Due to the default configuration of InetD (Internet Services Daemon) it is possible for a remote attacker to initiate a denial of service attack against one of its hosted services. | | | SecuriTeam.com ™ - Default Configuration of InetD Allows Attackers to Initiate a DoS |
|
http://www.securiteam.com/unixfocus/5GP0220B5Y.html
|
|
| |
| | inetd |
| | Anyone know if this already exists or want to add to it so I can suggest it to the inetd | | | I have a question for the inetd buffs out there...perhaps something like xinetd or a newer version | | | This would be extremely useful in many limited-budget cases where a multitude of IPs are not |
|
http://www.linuxgazette.com/book/print/7755
|
|
|
