Re: security risk of having a long list of services in inetd

2008-09-01 Thread Tim Edwards
Paul Dufresne wrote: > 2008/8/30 Thomas Weinbrenner <[EMAIL PROTECTED]>: > Well, it is more than just a name. man inetd says: > "inetd should be run at boot time by /etc/rc (see rc(8)). It then > listens > for connections on certain internet sockets. When a connection is found >

Re: security risk of having a long list of services in inetd

2008-08-30 Thread Martin
Forgot to add, if it wasn't clear enough: man inetd doesn't necessarily have _anything_ to do with /etc/services, totally depends on which inetd you use and wether your inetd even cares about information in /etc/services (netstat can use this information as someone else already told you). /martin

Re: security risk of having a long list of services in inetd

2008-08-30 Thread Martin
Hi, 2008/8/30 Paul Dufresne <[EMAIL PROTECTED]>: > 2008/8/30 Thomas Weinbrenner <[EMAIL PROTECTED]>: > Well, it is more than just a name. man inetd says: It's simply the information that says: smtp is on port 25 ssh is on port ... ... nothing more nothing less. It depends on inetd (and only in

Re: security risk of having a long list of services in inetd

2008-08-30 Thread Paul Dufresne
2008/8/30 Thomas Weinbrenner <[EMAIL PROTECTED]>: > Paul Dufresne <[EMAIL PROTECTED]> schrieb: >>> From: Paul Dufresne <[EMAIL PROTECTED]> Looking to /etc/services, I found that Debian seems to like to have a very big file with all known services rather than just add the services nee

Re: security risk of having a long list of services in inetd

2008-08-30 Thread Eduardo M KALINOWSKI
Paul Dufresne wrote: > Yes, I know. But as I see it, each mapping is like a *possible* door > to the Internet. > When there is so much, it become too hard to look at each door to see > if there is a program behind, > and if it does what it should. > > Taken from http://en.wikipedia.org/wiki/Inetd

Re: security risk of having a long list of services in inetd

2008-08-30 Thread Thomas Weinbrenner
Paul Dufresne <[EMAIL PROTECTED]> schrieb: >> From: Paul Dufresne <[EMAIL PROTECTED]> >>> Looking to /etc/services, I found that Debian seems to like to have a >>> very big file with all known services rather than just add the >>> services needed. I don't even knows if other distributions does just

security risk of having a long list of services in inetd

2008-08-29 Thread Paul Dufresne
> From: Paul Dufresne <[EMAIL PROTECTED]> >> For myself, rkhunter give warning about inetd. >> Looking to /etc/services, I found that Debian seems to like to have a >> very big file with all known services rather than just add the >> services needed. I don't even knows if other distributions does j