[olug] RH 7 review
Vincent
vraffensberger at home.com
Mon Aug 28 23:45:27 UTC 2000
Daniel Pfile wrote:
>
> just a quick note, i saw the mention of xinetd and it sparked a bit of
> intrest. here's what debian says about it, if anybody wants a quick and
> dirty info (from woody, aka debian 2.3)
>
> -- SNIP --
>
> xinetd - replacement for inetd with many enhancements
>
> xinetd has access control machanisms, extensive logging capabilities, the
> ability to make services available based on time, and can place limits on
> the number of servers that can be started, among other things.
>
> It has the ability to redirect TCP streams to a remote host and port. This
> is useful for those of that use ip masquerading, or NAT, and want to be
> able to reach your internal hosts.
>
> It also has the ability to bind specific services to specific interfaces.
> This is useful when you want to make services available for your internal
> network, but not the rest of the world. Or to have a different service
> running on the same port, but different interfaces.
>
> -- SNIP --
>
> maybe i'll play with it... the cool thing about debian is it's only a
> couple keystrokes away.
>
That's in RH7 beta.
It's defiantly worth it. It's sorta modular, meaning there's a config
file for each service. You can either edit a line in the file or remove
the file to disable a service. I suppose that also makes it easier to
write hardening or install scripts. The script merely has to replace,
remove or install the file, rather than finding the line in inetd.conf
and making changes. That can get messy when people have done weird
things in there.
---------------------------------------------------------------------
To unsubscribe, e-mail: olug-unsubscribe at bstc.net
For additional commands, e-mail: olug-help at bstc.net
More information about the OLUG
mailing list