Commit Graph

56 Commits

Author SHA1 Message Date
elad 392d31ddc2 Use more sane defaults for commented out fingerd entry.
From OpenBSD and Zafer Aydogan.
PR/31341.
2005-09-18 19:47:28 +00:00
christos d81b21774f Add -a valid for PAM. 2005-02-28 02:35:55 +00:00
christos a73f51dc63 new lines for identd [ipv6 support and option adjustment] 2004-01-31 21:51:53 +00:00
wiz ef6f82b46b Remove nntp line -- it refers to a non-existing daemon.
Closes PR 22388, from Nate Hill.
2003-08-07 06:44:29 +00:00
christos 7d3ab77f7d identd can now run as nobody. 2003-06-27 18:40:06 +00:00
tron 8595228212 identd(8) must run as "root" to use TCPCTL_IDENT via sysctl(3). This fixes
PR bin/21261 by myself.
2003-05-02 08:51:08 +00:00
bouyer 3f0c6192ac Also register rquota version 2. 2003-02-14 14:56:45 +00:00
itojun 78964c9832 rexecd is IPv6 capable (not sure who will be using it though) 2002-06-05 23:06:51 +00:00
itojun e66c6ebb83 committed by mistake 2002-06-05 21:47:15 +00:00
itojun 1890825b44 uid/gid for sendmail 8.12.x.
disallow chroot priv accounts from being used for ftp.
2002-06-05 21:32:25 +00:00
itojun 53805e1cd5 uucpd supports IPv6 2001-11-21 10:27:53 +00:00
wiz d768fd88a7 Enable logging options for (commented out) uucpd and fingerd by default.
Addresses misc/10219 by Jim Bernard.
2001-05-06 12:08:57 +00:00
thorpej a19c4c9523 Cleanup formatting of the rpc services. 2001-04-06 00:33:33 +00:00
thorpej ceb66a1751 Add a tcp6 entry for hpropd. 2001-04-06 00:29:58 +00:00
thorpej dff641d8e0 kpasswd is a "wait" type service. 2001-03-25 22:33:15 +00:00
itojun c1d9ab7c34 comsat is ipv6 ready 2001-03-08 01:27:24 +00:00
itojun b60001d78d move tcp6/udp6 entries upwards so that they do not get out of sync with
IPv4 services.  add kerberos-adm and internal services (like echo) on tcp/udp6.
2000-12-31 06:06:50 +00:00
fvdl 31d5237f30 Now that kpasswdd works from inetd, also correct the entry: kpasswdd is an
udp service, not tcp.
2000-09-13 11:34:57 +00:00
thorpej 6636b19ffd Add (commented out) hprop service, along with a short explanation
of when to enable it and why.
2000-08-06 20:35:13 +00:00
thorpej ac1bd4275a Remove the (not supported) krbupdate service, and add (commented out)
kerberos-adm.
2000-08-05 00:48:15 +00:00
fvdl 1840f1fa18 Allow a higher count of started services for broadcast RPC services. Since
rpcbind version 3 and 4 clients will try broadcasts using both the old
and new protocol for IPv4, the double amount of packets may come in,
causing bogus "service looping" events in inetd.
2000-06-22 11:35:13 +00:00
sommerfeld b88d86b1b6 Comment out telnet, ftp since they use cleartext passwords (discussed
recently on tech-net, no objection raised except that it doesn't go
far enough..)

Fix misc/10219 as suggested in PR: add -L to rlogind and -l to tftpd
command lines to enable logging.
2000-06-06 12:04:02 +00:00
fvdl 02cd59a751 * Portmap is now called rpcbind.
* Add IPv6 RPC entries to inetd.conf (commented out by default, as the others)
* Add netconfig file, needed for TI-RPC code.
2000-06-02 22:54:08 +00:00
lukem ff0601b77a remove commented-out entry for mountd, since whilst support for inetd
was added to mountd in mountd.c::1.6, it was removed as part of the
4.4-lite merge in mountd.c::1.12. if the entry was uncommented your
machine might clag up after a showmount as inetd spawned lots of
mountd processes...
2000-05-13 07:28:09 +00:00
itojun f539e10ff8 enable IPv6 ftp and telnet by default.
it makes more sense to me as we have INET6 in kernel, and we have ftp4/telnet4
enabled by default.  maybe I'm biased:-)
2000-02-28 17:25:42 +00:00
itojun b32545eabf add tcp6 lines for rshd/rlogind. 2000-02-09 11:05:04 +00:00
itojun 6badb9eb2b add comment about IPv4/v6 dual stack support (enable both tcp and tcp6). 1999-12-20 12:43:17 +00:00
mycroft fbbc23fa6a Disable everything except ftpd and telnetd by default. 1999-11-05 11:16:20 +00:00
ad 6933332596 Use a colon to seprate user and group name pairs. 1999-10-06 21:55:54 +00:00
ad d61e19af02 GENERIC kernel does not ship with IPv6, so comment out tcp6/udp6 entries. 1999-10-05 10:44:28 +00:00
itojun 47b0e5ff1d IPv6 support. 1999-07-12 20:17:09 +00:00
itojun 90db061921 add telnet on tcp6. 1999-07-02 06:32:32 +00:00
itojun 5202885909 provide sample lines for IPv6 services (at this moment ftpd and fingerd) 1999-07-02 06:05:21 +00:00
jwise 2fe3ffc188 Modify (commented out, pre-existing) identd line to start identd `nowait'
for those who want to use tcpwrappers appropriately.

Resist temptation to add -L"something appropriate"
1999-05-18 22:20:07 +00:00
mrg 49a7341d45 make these changes to the default user.group:
- internal services run as `nobody'
- rpc.rusersd and rpc.sprayd run as `nobody'
- rpc.rstatd run as `nobody.kmem'
- rpc.rwalld run as `nobody.tty'
1997-10-07 12:45:32 +00:00
mrg cf443f3572 add hunt(6) entry (commented by default) 1997-10-04 09:16:00 +00:00
christos ea18ad7974 Run ntalkd as nobody.tty 1997-06-29 19:20:20 +00:00
kleink 47f9ae0ae6 mountd was moved to /usr/sbin ; pointed out by Thorsten Frueauf. 1997-04-03 11:00:16 +00:00
mikel ef538c3176 cleanup Lite-1 merge 1997-02-15 10:02:07 +00:00
mycroft 84250ffb70 Turn off echo, discard, and chargen by default. 1997-01-20 06:10:24 +00:00
mrg ca69bed024 turn off internal udp services, and log rshd connections; ideas from openbsd. 1996-12-29 03:32:44 +00:00
thorpej ecfa4355a6 RCS id police. 1996-05-08 17:19:17 +00:00
thorpej 9f19d8f938 bootpd can run from the shell, too, and thus lives in /usr/sbin, not
/usr/libexec.
1995-09-13 17:47:55 +00:00
mycroft 69aaa6cd28 Turn off idented by default. 1995-06-10 20:33:05 +00:00
jtc 170153e198 The tftpd daemon has been changed to use setgid() & setuid() to
explicitly set the user and group IDs to non-priveleged values.  This
was done because the chroot() call used when the secure (-s) option is
used can only be done by the superuser.

This change now requires tftpd to be executed by root.  So the
inetd.conf entry has been changed to start it that way.  I also
added -s /tftpboot arguments, so people who uncomment the tftpd
entry without realizing it's security ramifications won't open
thier whole systems to unauthorized access.
1995-06-04 20:55:39 +00:00
cgd 4fcfb13e18 disable kerberos version of rsh/rlogin, because things don't work properly
if they're enabled and the programs don't support kerberos (by default,
the NetBSD programs don't.)
1994-12-23 15:12:39 +00:00
deraadt 06e90a168a sprayd & rquotad: disabled by default 1994-06-24 07:46:19 +00:00
glass 6cc6cf15ee move bootpd from othersrc to libexec. add bootptab file 1994-04-18 05:15:36 +00:00
cgd b5a980c0d9 fix that last inetd.conf 1994-02-23 00:03:20 +00:00
glass 422a122004 remove reference to old talk protocol. will result in better failure 1994-01-24 18:56:17 +00:00