Commit Graph

74 Commits

Author SHA1 Message Date
Peter Wemm
7737a49d16 The kerberised network services should only be active in inetd.conf
if kerberos is installed.  So far as I'm aware, kerberos aware clients
detect ECONNREFUSED and (if allowed) fall back to the non-kerberos
servers.  They do not know how to interpret messages such as
"rlogind: unknown option -k".

I believe Garrett also mentioned this.

Unfortunately, this adds an extra step to bringing up kerberos.

It also stops /var/log/messages getting quite so many useless (and
confusing) error messages when somebody does a port scan on you.
1996-11-10 13:06:14 +00:00
Paul Traina
9080596148 In the brave new world, that that does not make us strong, kills us.
Turn OFF the "small servers" by default.  FreeBSD systems should only
serve actively used programs.  Jewels like chargen and echo are too
useful in attack scenarios.
1996-10-02 03:52:58 +00:00
Poul-Henning Kamp
6d26aec672 Add commented out example for bootps 1996-09-19 08:19:25 +00:00
Thomas Graichen
7c1caee10f changed /etc/[daily,weekly,monthly] to not rotate the logfiles by
"hand", changed /etc/crontab to call /usr/sbin/newsyslog every hour
(the entry was there before - but we haven't had any newsyslog until
today :-) and changed /etc/inetd.conf to also contain (commentet out)
entries for rpc.rquotad and rpc.sprayd (taken from NetBSD)
1996-01-05 10:09:13 +00:00
Joerg Wunsch
a66e17dec5 Add /tftpboot as an argument to the commented-out example for tftp, so
people don't compromise their system by blindly un-commenting the
entry.
1995-12-23 17:12:49 +00:00
Justin T. Gibbs
8344d39ad7 inetd.conf:
Add rkinit at 2108/tcp.

services:
Add rkinitd.
1995-09-15 22:02:06 +00:00
Andrey A. Chernov
61a65662e5 Restore tabs in inetd line
Submitted by:
Obtained from:
1995-07-29 22:22:08 +00:00
Andrey A. Chernov
f9c9747496 Rename in.identd -> identd according recent ports rename 1995-07-27 23:56:43 +00:00
Andrey A. Chernov
9265b96620 Add ident (commented out) 1995-04-08 16:21:45 +00:00
Garrett Wollman
b67268cfbc Disable UDP echo, chargen, date, and daytime services. 1994-12-21 20:32:44 +00:00
Andrey A. Chernov
dcb4550cb2 Uncomment uucpd by default, it is working and secure now 1994-12-19 01:11:19 +00:00
Andreas Schulz
85e5776f0a Change the example line for popper to point to /usr/local/libexec/popper
instead of /usr/local/etc/popper. The 2.0 installation installs it there.
1994-11-18 20:01:21 +00:00
Paul Traina
cf84309919 Secure fingerd by default 1994-09-29 09:58:07 +00:00
Paul Traina
ba84155d71 Disable rexecd by default (major security hole) 1994-09-29 09:20:40 +00:00
Paul Traina
d808fe8f6d Add an entry for pcnfsd (commented out) 1994-09-28 17:09:38 +00:00
Garrett Wollman
e4d7745b19 Added comment about registerd and kpasswdd not working in 1.x.
Deleted commented-out line which would start mountd; that's not
the right pplace to do it (don't confuse the users).
Should probablyhave uncommented rpc.rstatd, but didn't.
1994-06-13 22:41:04 +00:00
Andrey A. Chernov
6aba0e831e Comment out uucpd, not properly configured as default
Comment out walld/rusersd/rstatd, may be too verbose
1994-05-31 17:55:38 +00:00
Andrey A. Chernov
5f7d00d180 Uncomment uucpd, now it works
Uncomment rstatd/rusersd/rwalld all three worked
mountd still commented out, I remember some problem with it
1994-05-31 04:48:49 +00:00
Andreas Schulz
71e44e722b Added entries for sup into services.
Added an example entry for the pop3 popper into inetd.conf as a comment.
1993-12-05 16:39:47 +00:00
Rodney W. Grimes
e46cfc3249 Change space to tab in ruserd line per Guido van Rooij 1993-10-21 17:34:32 +00:00
Rodney W. Grimes
911d8c1f44 Disable rpc services so that inetd no longer hangs when you are not
running portmapper.  These are site specific functionality and should only
be enabled for sites that want them, not by default.

These services REQUIRE portmapper to be running
1993-10-13 06:32:06 +00:00
J.T. Conklin
bbc2a68087 Entries so RPC servers are started. 1993-09-23 17:41:08 +00:00
Rodney W. Grimes
037db89fb1 Added /etc/networks to the files that get installed, some how it got
dropped out of the Makefile.  Commented out talk in inetd.conf since
it refers to the old non-existent otalkd.
1993-09-02 11:10:02 +00:00
Rodney W. Grimes
1bf9d5d951 Initial import of 386BSD 0.1 othersrc/etc 1993-06-20 13:41:45 +00:00