Date: Sat, 12 Sep 1998 15:05:22 +0200 From: Wolfram Schneider <wosch@panke.de.freebsd.org> To: security@FreeBSD.ORG Subject: unlimited fingerd in /etc/inetd.conf Message-ID: <19980912150521.A1985@panke.de>
next in thread | raw e-mail | index | archive | help
I think we should not run an unlimited fingerd(8) from inetd by default. With this patch inetd runs only 3 simultaneous fingerd processes and limit the connections-per-ip-per-minute to 10. Index: inetd.conf =================================================================== RCS file: /usr/cvs/src/etc/inetd.conf,v retrieving revision 1.29 diff -u -r1.29 inetd.conf --- inetd.conf 1998/09/02 01:34:56 1.29 +++ inetd.conf 1998/09/12 12:57:13 @@ -8,7 +8,7 @@ telnet stream tcp nowait root /usr/libexec/telnetd telnetd shell stream tcp nowait root /usr/libexec/rshd rshd login stream tcp nowait root /usr/libexec/rlogind rlogind -finger stream tcp nowait nobody /usr/libexec/fingerd fingerd -s +finger stream tcp nowait/3/10 nobody /usr/libexec/fingerd fingerd -s #exec stream tcp nowait root /usr/libexec/rexecd rexecd #uucpd stream tcp nowait root /usr/libexec/uucpd uucpd #nntp stream tcp nowait usenet /usr/libexec/nntpd nntpd -- Wolfram Schneider <wosch@freebsd.org> http://www.freebsd.org/~w/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19980912150521.A1985>