Re: portmap (was Re: SECURITY PROBLEM: autofs [all versions])

To: debian-devel@lists.debian.org
Subject: Re: portmap (was Re: SECURITY PROBLEM: autofs [all versions])
From: Mike Mattice <mike@milliways.cx>
Date: Fri, 7 Jul 2000 17:04:34 -0500 (CDT)
Message-id: <[🔎] 14694.21490.791899.641259@milliways.cx>
Reply-to: Mike Mattice <mike@milliways.cx>
In-reply-to: <[🔎] 3965F246.8BB07620@creol.ucf.edu>
References: <[🔎] 20000705131034.A18926@x8b4e53cd.dhcp.okstate.edu> <[🔎] 39637C9E.F740D61D@aet-usa.com> <[🔎] 20000705182528.R4451@flounder.net> <[🔎] 20000707011257R.dancer@netfort.gr.jp> <[🔎] 3964B791.C492151D@aet-usa.com> <[🔎] 20000708005600.C1637@azure.humbug.org.au> <[🔎] 3965F246.8BB07620@creol.ucf.edu>

 > 
 > How about something like Irix's chkconfig?  Make the init.d scripts
 > source /etc/config.d/whatever, and then exit 0 if some environment
 > variable (RUN for example) isn't set to 1.
 > 
 > This could be combined with the idea from another thread to have an
 > /etc/config.d directory that would let users set various environment
 > variables without messing with the actual init.d scripts.

I thought about doing it this way too, but then I ran across the ipmasq
package.  It sets up a bunch of .def (default) files in /etc/ipmasq (something)
and if you want to override them you supply a .rul file with the same name.

This might make more sense for custom scripts because an upgrade would just
replace the .def file and not touch the override file.

I think for those scripts which have "setup parameters" in the init.d script
there should be a /etc/config.d or similar as debian policy.  That way those
scripts could be updated without too many side effects as well.

My $.02
Mike Mattice

Reply to:

References:
- Re: SECURITY PROBLEM: autofs [all versions]
  - From: David Starner <dvdeug@x8b4e53cd.dhcp.okstate.edu>
- Re: SECURITY PROBLEM: autofs [all versions]
  - From: "Christopher W. Curtis" <ccurtis@aet-usa.com>
- Re: SECURITY PROBLEM: autofs [all versions]
  - From: Adam McKenna <adam-debian@flounder.net>
- portmap (was Re: SECURITY PROBLEM: autofs [all versions])
  - From: Junichi Uekawa <dancer@netfort.gr.jp>
- Re: portmap (was Re: SECURITY PROBLEM: autofs [all versions])
  - From: "Christopher W. Curtis" <ccurtis@aet-usa.com>
- Re: portmap (was Re: SECURITY PROBLEM: autofs [all versions])
  - From: Anthony Towns <aj@azure.humbug.org.au>
- Re: portmap (was Re: SECURITY PROBLEM: autofs [all versions])
  - From: jpb <jpb@creol.ucf.edu>

Prev by Date: Re: ITP: libsafe (again, and need a sponsor...)
Next by Date: Re: ftpd and setproctitle()
Previous by thread: Re: portmap (was Re: SECURITY PROBLEM: autofs [all versions])
Next by thread: Re: portmap (was Re: SECURITY PROBLEM: autofs [all versions])
Index(es):
- Date
- Thread