On Thu, Mar 31, 2005 at 10:44:53PM -0600, Brad Sims wrote:
>
> Will not having the usual all: local break something?
Yes:
$ ldd `which portmap`
libwrap.so.0 => /lib/libwrap.so.0 (0x40030000)
libnsl.so.1 => /lib/libnsl.so.1 (0x40039000)
libc.so.6 => /lib/libc.so.6 (0x4004e000)
/lib/ld-linux.so.2 => /lib/ld-linux.so.2 (0x40000000)
If you are using a GNOME environment (and thus, FAM, and thus, the
portmapper) some services might not work properly (not only FAM, but
posibly bonobo and oaf too). If, for some reason, you are using a database
backend locally through TCP/IP instead of through UNIX sockets it will
break too:
$ ldd `which mysqld`
librt.so.1 => /lib/librt.so.1 (0x40030000)
libwrap.so.0 => /lib/libwrap.so.0 (0x40042000)
(...)
If you try to use Nessus and establish local connections from the GUI to
the server (Nessus does not use UNIX sockets, only TCP/IP), it will break
too:
$ ldd `which nessusd`
libnasl.so.2 => /usr/lib/libnasl.so.2 (0x40030000)
(...)
libwrap.so.0 => /lib/libwrap.so.0 (0x40248000)
(...)
Why not see for yourself? Try this to see which stuff in your system is
compiled with libwrap (and thus uses tcpwrappers):
for i in /usr/bin/* /usr/sbin/* /usr/local/bin/* /usr/local/sbin/* ; do \
[ -x $i ] && [ -n "file $i |grep ELF" ] && \
[ -n "`ldd $i | grep libwrap`" ] && echo $i; \
done
Regards
Javier
Attachment:
signature.asc
Description: Digital signature