hello,
both inetd and xinetd can specify the listening address on which to bind.
it usually looks like this on inetd:
192.168.10.1:ftp stream tcp nowait root /usr/libexec/tcp
d /usr/libexec/ftpd ftpd -US -l
xinetd does some other features like rate limitation for select networks
and hosts.
cheers,
.truman.boyes.
On Tue, 20 Mar 2001, Magic Phibo wrote:
> Ciao
>
> Since RedHat 7.0 inetd has been replaced by xinetd, which has some really
> useful features. For example, you can now specify on which address/nic the
> listening port shall be bound. The file /etc/services is just a mapping from
> service name to tcp/udp port number, just like /etc/rpc does for rpc program
> number to tcp/udp port number. So, if you really want to have control about
> listening ports controlled by xinetd, the right place to configure are the
> files:
> - /etc/xinetd.conf
> - /etc/xinetd.d/* (for each service one file)
>
> Check also all the init scripts in /etc/rc.d/init.d and the system's pre-init
> script /etc/rc.d/rc.sysinit and the system's post-init script
> /etc/rc.d/rc.local.
>
> The ports 12345, 31337 and so on in your nmap output are DEFINITELY
> not default for a RH 7.0 installation out of the box !
>
>
> Cheers,
> Phibo
>
>
> On Tue, 20 Mar 2001, mouss wrote:
> >At 08:04 20/03/01 -0500, Patrick Orzechowski wrote:
> >>you need to edit your etc/services file to shut off those services....
> >
> >that might work, but he will get too many errors!
> >the right way should be to comment the services in /etc/inetd.conf
> >(as far as I know, xinetd uses the same file as inetd).
> >
> >have a look at:
> >http://www.macsecurity.org/resources/xinetd/tutorial.shtml
> >
> >
> >regards,
> >mouss
> >
> >-
> >[To unsubscribe, send mail to [EMAIL PROTECTED] with
> >"unsubscribe firewalls" in the body of the message.]
> -
> [To unsubscribe, send mail to [EMAIL PROTECTED] with
> "unsubscribe firewalls" in the body of the message.]
>
-
[To unsubscribe, send mail to [EMAIL PROTECTED] with
"unsubscribe firewalls" in the body of the message.]
