Re: socket-based activation has unmaintainable security?

To: debian-devel@lists.debian.org
Subject: Re: socket-based activation has unmaintainable security?
From: Edward Allcutt <edward@allcutt.me.uk>
Date: Thu, 7 Feb 2013 15:15:23 +0000 (GMT)
Message-id: <[🔎] alpine.DEB.2.02.1302071512200.20566@pandora.retrosnub.co.uk>
In-reply-to: <[🔎] 201302071449.15274.tiposchi@tiscali.it>
References: <20121114204711.GA9158@virgil.dodds.net> <[🔎] 201302071028.28586.russell@coker.com.au> <[🔎] 20130207093959.GA8339@spike.0x539.de> <[🔎] 201302071449.15274.tiposchi@tiscali.it>

On Thu, 7 Feb 2013, Salvo Tomaselli wrote:

Yes but the xinetd process keeps the socket open, then on new connection forks
and gives the service the fd of the new connection, retaining the fd for the
listener part.

Which means that on every connection it has to fork (and that's extremely
slow).

Only true for "nowait" entries. "wait" entries will pass the listeningsocket to the process which then accepts connections itself.


--
Edward Allcutt

Reply to:

References:
- Re: socket-based activation has unmaintainable security?
  - From: Russell Coker <russell@coker.com.au>
- Re: socket-based activation has unmaintainable security?
  - From: Philipp Kern <pkern@debian.org>
- Re: socket-based activation has unmaintainable security?
  - From: Salvo Tomaselli <tiposchi@tiscali.it>

Prev by Date: Re: socket-based activation has unmaintainable security?
Next by Date: Re: Go (golang) packaging, part 2
Previous by thread: Re: socket-based activation has unmaintainable security?
Next by thread: Re: socket-based activation has unmaintainable security?
Index(es):
- Date
- Thread