Commit Graph

56 Commits

Author SHA1 Message Date
elad
392d31ddc2 Use more sane defaults for commented out fingerd entry.
From OpenBSD and Zafer Aydogan.
PR/31341.
2005-09-18 19:47:28 +00:00
christos
d81b21774f Add -a valid for PAM. 2005-02-28 02:35:55 +00:00
christos
a73f51dc63 new lines for identd [ipv6 support and option adjustment] 2004-01-31 21:51:53 +00:00
wiz
ef6f82b46b Remove nntp line -- it refers to a non-existing daemon.
Closes PR 22388, from Nate Hill.
2003-08-07 06:44:29 +00:00
christos
7d3ab77f7d identd can now run as nobody. 2003-06-27 18:40:06 +00:00
tron
8595228212 identd(8) must run as "root" to use TCPCTL_IDENT via sysctl(3). This fixes
PR bin/21261 by myself.
2003-05-02 08:51:08 +00:00
bouyer
3f0c6192ac Also register rquota version 2. 2003-02-14 14:56:45 +00:00
itojun
78964c9832 rexecd is IPv6 capable (not sure who will be using it though) 2002-06-05 23:06:51 +00:00
itojun
e66c6ebb83 committed by mistake 2002-06-05 21:47:15 +00:00
itojun
1890825b44 uid/gid for sendmail 8.12.x.
disallow chroot priv accounts from being used for ftp.
2002-06-05 21:32:25 +00:00
itojun
53805e1cd5 uucpd supports IPv6 2001-11-21 10:27:53 +00:00
wiz
d768fd88a7 Enable logging options for (commented out) uucpd and fingerd by default.
Addresses misc/10219 by Jim Bernard.
2001-05-06 12:08:57 +00:00
thorpej
a19c4c9523 Cleanup formatting of the rpc services. 2001-04-06 00:33:33 +00:00
thorpej
ceb66a1751 Add a tcp6 entry for hpropd. 2001-04-06 00:29:58 +00:00
thorpej
dff641d8e0 kpasswd is a "wait" type service. 2001-03-25 22:33:15 +00:00
itojun
c1d9ab7c34 comsat is ipv6 ready 2001-03-08 01:27:24 +00:00
itojun
b60001d78d move tcp6/udp6 entries upwards so that they do not get out of sync with
IPv4 services.  add kerberos-adm and internal services (like echo) on tcp/udp6.
2000-12-31 06:06:50 +00:00
fvdl
31d5237f30 Now that kpasswdd works from inetd, also correct the entry: kpasswdd is an
udp service, not tcp.
2000-09-13 11:34:57 +00:00
thorpej
6636b19ffd Add (commented out) hprop service, along with a short explanation
of when to enable it and why.
2000-08-06 20:35:13 +00:00
thorpej
ac1bd4275a Remove the (not supported) krbupdate service, and add (commented out)
kerberos-adm.
2000-08-05 00:48:15 +00:00
fvdl
1840f1fa18 Allow a higher count of started services for broadcast RPC services. Since
rpcbind version 3 and 4 clients will try broadcasts using both the old
and new protocol for IPv4, the double amount of packets may come in,
causing bogus "service looping" events in inetd.
2000-06-22 11:35:13 +00:00
sommerfeld
b88d86b1b6 Comment out telnet, ftp since they use cleartext passwords (discussed
recently on tech-net, no objection raised except that it doesn't go
far enough..)

Fix misc/10219 as suggested in PR: add -L to rlogind and -l to tftpd
command lines to enable logging.
2000-06-06 12:04:02 +00:00
fvdl
02cd59a751 * Portmap is now called rpcbind.
* Add IPv6 RPC entries to inetd.conf (commented out by default, as the others)
* Add netconfig file, needed for TI-RPC code.
2000-06-02 22:54:08 +00:00
lukem
ff0601b77a remove commented-out entry for mountd, since whilst support for inetd
was added to mountd in mountd.c::1.6, it was removed as part of the
4.4-lite merge in mountd.c::1.12. if the entry was uncommented your
machine might clag up after a showmount as inetd spawned lots of
mountd processes...
2000-05-13 07:28:09 +00:00
itojun
f539e10ff8 enable IPv6 ftp and telnet by default.
it makes more sense to me as we have INET6 in kernel, and we have ftp4/telnet4
enabled by default.  maybe I'm biased:-)
2000-02-28 17:25:42 +00:00
itojun
b32545eabf add tcp6 lines for rshd/rlogind. 2000-02-09 11:05:04 +00:00
itojun
6badb9eb2b add comment about IPv4/v6 dual stack support (enable both tcp and tcp6). 1999-12-20 12:43:17 +00:00
mycroft
fbbc23fa6a Disable everything except ftpd and telnetd by default. 1999-11-05 11:16:20 +00:00
ad
6933332596 Use a colon to seprate user and group name pairs. 1999-10-06 21:55:54 +00:00
ad
d61e19af02 GENERIC kernel does not ship with IPv6, so comment out tcp6/udp6 entries. 1999-10-05 10:44:28 +00:00
itojun
47b0e5ff1d IPv6 support. 1999-07-12 20:17:09 +00:00
itojun
90db061921 add telnet on tcp6. 1999-07-02 06:32:32 +00:00
itojun
5202885909 provide sample lines for IPv6 services (at this moment ftpd and fingerd) 1999-07-02 06:05:21 +00:00
jwise
2fe3ffc188 Modify (commented out, pre-existing) identd line to start identd `nowait'
for those who want to use tcpwrappers appropriately.

Resist temptation to add -L"something appropriate"
1999-05-18 22:20:07 +00:00
mrg
49a7341d45 make these changes to the default user.group:
- internal services run as `nobody'
- rpc.rusersd and rpc.sprayd run as `nobody'
- rpc.rstatd run as `nobody.kmem'
- rpc.rwalld run as `nobody.tty'
1997-10-07 12:45:32 +00:00
mrg
cf443f3572 add hunt(6) entry (commented by default) 1997-10-04 09:16:00 +00:00
christos
ea18ad7974 Run ntalkd as nobody.tty 1997-06-29 19:20:20 +00:00
kleink
47f9ae0ae6 mountd was moved to /usr/sbin ; pointed out by Thorsten Frueauf. 1997-04-03 11:00:16 +00:00
mikel
ef538c3176 cleanup Lite-1 merge 1997-02-15 10:02:07 +00:00
mycroft
84250ffb70 Turn off echo, discard, and chargen by default. 1997-01-20 06:10:24 +00:00
mrg
ca69bed024 turn off internal udp services, and log rshd connections; ideas from openbsd. 1996-12-29 03:32:44 +00:00
thorpej
ecfa4355a6 RCS id police. 1996-05-08 17:19:17 +00:00
thorpej
9f19d8f938 bootpd can run from the shell, too, and thus lives in /usr/sbin, not
/usr/libexec.
1995-09-13 17:47:55 +00:00
mycroft
69aaa6cd28 Turn off idented by default. 1995-06-10 20:33:05 +00:00
jtc
170153e198 The tftpd daemon has been changed to use setgid() & setuid() to
explicitly set the user and group IDs to non-priveleged values.  This
was done because the chroot() call used when the secure (-s) option is
used can only be done by the superuser.

This change now requires tftpd to be executed by root.  So the
inetd.conf entry has been changed to start it that way.  I also
added -s /tftpboot arguments, so people who uncomment the tftpd
entry without realizing it's security ramifications won't open
thier whole systems to unauthorized access.
1995-06-04 20:55:39 +00:00
cgd
4fcfb13e18 disable kerberos version of rsh/rlogin, because things don't work properly
if they're enabled and the programs don't support kerberos (by default,
the NetBSD programs don't.)
1994-12-23 15:12:39 +00:00
deraadt
06e90a168a sprayd & rquotad: disabled by default 1994-06-24 07:46:19 +00:00
glass
6cc6cf15ee move bootpd from othersrc to libexec. add bootptab file 1994-04-18 05:15:36 +00:00
cgd
b5a980c0d9 fix that last inetd.conf 1994-02-23 00:03:20 +00:00
glass
422a122004 remove reference to old talk protocol. will result in better failure 1994-01-24 18:56:17 +00:00