[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Sheflug] inetd
Kev -- see para 3. HTH
BTW, a cypherpunk I know swears by xinetd; claims it is much more
secure than inetd + tcpwrappers.
xinetd - replacement for inetd with many enhancements
xinetd has access control machanisms, extensive logging capabilities,
the ability to make services available based on time, and can place
limits on the number of servers that can be started, among other
things.
It has the ability to redirect TCP streams to a remote host and
port. This is useful for those of that use ip masquerading, or NAT,
and want to be able to reach your internal hosts.
It also has the ability to bind specific services to specific
interfaces. This is useful when you want to make services available
for your internal network, but not the rest of the world. Or to have a
different service running on the same port, but different interfaces.
xinetd now has a simple interactive administration service you can
run. In your xinetd.conf file, if you have a service named "xadmin" it
will be an internal service. You should specify a port number for it
to listen on, and preferably, some access control based on IP, since
it currently does not have access control its self. You can then
telnet to that port, and xinetd will tell you some simple information
about its self, but it is still somewhat useful.
>From the Debian package database. Where else?
--
University of Tsukuba Tennodai 1-1-1 Tsukuba 305-8573 JAPAN
Institute of Policy and Planning Sciences Tel/fax: +81 (298) 53-5091
________________ O ________________ O ________________ O ________________
What are those circles & straight lines? "Debian rocks, XEmacs rules."
---------------------------------------------------------------------
Sheffield Linux User's Group - http://www.sheflug.co.uk
To unsubscribe from this list send mail to
- <sheflug-request [at] vuw.ac.nz> - with the word
"unsubscribe" in the body of the message.
GNU the choice of a complete generation.