Date: Wed, 15 Aug 2001 23:27:20 -0500 From: Ade Lovett <ade@FreeBSD.org> To: Robert Watson <rwatson@FreeBSD.ORG> Cc: Igor Roshchin <str@giganda.komkon.org>, security@FreeBSD.ORG Subject: Re: cvs commit: src/etc inetd.conf Message-ID: <20010815232720.B10783@FreeBSD.org> In-Reply-To: <Pine.NEB.3.96L.1010815133118.81642J-100000@fledge.watson.org>; from rwatson@FreeBSD.ORG on Wed, Aug 15, 2001 at 01:32:40PM -0400 References: <200108151729.f7FHTKq11654@giganda.komkon.org> <Pine.NEB.3.96L.1010815133118.81642J-100000@fledge.watson.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, Aug 15, 2001 at 01:32:40PM -0400, Robert Watson wrote: > This is pretty much what I had in mind, but the problem I cited was that > it's difficult for such an editor to read in inetd.conf in an effective > way after the user has edited it once, because it's hard to tell which > lines are "disabled services" and which are simply "comments". Yes and no. If a disabled service were to be marked with, for example: #DISABLED# ftp stream tcp blah.. this would make things considerably easier to determine which is purely a comment, and which is a physical action to disable a service. Of course, adding an on/off flag to inetd.conf for each service is another option, but that has the annoying issue of violating POLA, since our inetd.conf would look unlike any others. -aDe -- Ade Lovett, Austin, TX. ade@FreeBSD.org FreeBSD: The Power to Serve http://www.FreeBSD.org/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20010815232720.B10783>