[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: [RFR] templates://tcp-wrappers/{tcpd.templates}

On (31/03/07 19:52), Christian Perrier wrote:
> Please find, for review, the debconf templates and the debian/control
> file of tcp-wrappers.

> Template: tcpd/paranoid-mode
> Type: boolean
> Default: false
> _description: Use paranoid settings in hosts.allow and hosts.access?
>  New /etc/hosts.allow and /etc/hosts.deny files for the TCP wrappers
>  daemon (tcpd) will be created as they do not exist yet.

Is it intended to have hosts.access in the short description and
hosts.deny in the long?

> Description: Wietse Venema's TCP wrapper utilities
>  Wietse Venema's network logger, also known as TCPD or LOG_TCP.
>  .
>  These programs log the client host name of incoming telnet,
>  ftp, rsh, rlogin, finger etc. requests. Security options are:
>  access control per host, domain and/or service; detection of
>  host name spoofing or host address spoofing; booby traps to
>  implement an early-warning system.

This doesn't seem write to me. It is called a logger, but then says that
it has security options so it seems to do more than that.

Also the list with semicolons is unusual, but I see why it is done. It
can probably be rewritten to avoid this. I will send a diff if I come up
with something satisfactory.



  James Westby   --    GPG Key ID: B577FE13    --     http://jameswestby.net/
  seccure key - (3+)k7|M*edCX/.A:n*N!>|&7U.L#9E)Tu)T0>AM - secp256r1/nistp256

Reply to: