Have you installed/upgraded Linuxconf multiple times? In order to use
linuxconf via the web the root password is needed. You can of course rem
out the statements in inetd.con or if you what/need web access you can
configure linuxconf to only accept connections from certain IPs. You can
also try webmin http://www.webmin.com/webmin, here is a link to securely
administering your linux box over the net.
http://plainmail.com/linux/secure.html.
Cecil
----- Original Message -----
From: John Aldrich <[EMAIL PROTECTED]>
To: <[EMAIL PROTECTED]>
Sent: Tuesday, May 16, 2000 2:40 PM
Subject: Re: [expert] Multiple entries in inetd.conf
> On Tue, 16 May 2000, you wrote:
> > Hi,
> > I have just been looking at my inetd.conf and found the following on the
> > end. Can anyone suggest what process may have put them there as I
> > didn't consciously do it!
> >
> > # # End of inetd.conf
> >
> > linuxconf stream tcp wait root /bin/linuxconf linuxconf --http
> > #swat stream tcp nowait.400 root /usr/sbin/swat swat
> >
> > linuxconf stream tcp wait root /bin/linuxconf linuxconf --http
> >
> > linuxconf stream tcp wait root /bin/linuxconf linuxconf --http
> > #swat stream tcp nowait.400 root /usr/sbin/swat swat
> >
> I've been told that making Linuxconf available via HTTP is
> a big security hole as it can make your system configurable
> by others. I'd comment 'em out myself. At least I did.
> John
>
