[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: rlinetd security

On Tue, Jun 19, 2001 at 10:47:47AM -0700, Jamie Heilman wrote:
> No, you can't if you're plan is to uninstall inetd, the package structure is
> broken and won't allow it due to $@)!ed up dependancies.  I've been trying
> to do it for ages.  Then, when I found equivs I danced a jig.  Its pretty
> much impossible to do in potato, I think you can pull it off in sid/woody
> though with the help of equivs - I haven't tried as my only unstable box
> actually needed inetd, and was only accessible from an internal network so
> I wasn't worried about inetd's underlying flaws wrt DoSability and lack of
> concurency limiting.  If you use inetd on untrusted interface you are
> asking for pain, I thought that was fairly well understood by now.

It's true that uninstalling it (in potato, anyway) is not worth all the
effort.  But you can definitely disable it.  I have "K20inetd" links in
all my /etc/rc?.d directories where I don't want to run inetd.


| Web: http://web.morgul.net/~frodo/
| PGP Public Key: http://web.morgul.net/~frodo/mail.html 

Attachment: pgp_omjOE43H6.pgp
Description: PGP signature

Reply to: