From owner-freebsd-security  Tue Feb 13 09:45:23 1996
Return-Path: owner-security
Received: (from root@localhost)
          by freefall.freebsd.org (8.7.3/8.7.3) id JAA25725
          for security-outgoing; Tue, 13 Feb 1996 09:45:23 -0800 (PST)
Received: from grumble.grondar.za (root@grumble.grondar.za [196.7.18.130])
          by freefall.freebsd.org (8.7.3/8.7.3) with ESMTP id JAA25716
          for <freebsd-security@FreeBSD.ORG>; Tue, 13 Feb 1996 09:45:13 -0800 (PST)
Received: from localhost (mark@localhost [127.0.0.1]) by grumble.grondar.za (8.7.3/8.7.3) with SMTP id TAA02061; Tue, 13 Feb 1996 19:42:11 +0200 (SAT)
Message-Id: <199602131742.TAA02061@grumble.grondar.za>
X-Authentication-Warning: grumble.grondar.za: Host mark@localhost [127.0.0.1] didn't use HELO protocol
To: Brian Clapper <bmc@telebase.com>
cc: Mark Murray <mark@grondar.za>, Jim Dennis <jimd@mistery.mcafee.com>,
        freebsd-security@FreeBSD.ORG, Chuck Murcko <chuck@telebase.com>
Subject: Re: tripwire, xinetd (or tcp wrappers) 
Date: Tue, 13 Feb 1996 19:42:10 +0200
From: Mark Murray <mark@grondar.za>
Sender: owner-security@FreeBSD.ORG
Precedence: bulk

Brian Clapper wrote:
> Mark> Neither have been ported to FreeBSD. Tripwire is available from cert
> Mark> (ftp.cert.org) and xinetd is a bunch sharfiles + later patches
> Mark> available from ftp.uu.net and mirrors in (something like)
> Mark> usenet/comp.sources.unix/volume??/xinetd/part* and
> Mark> usenet/comp.sources.unix/volume??/xinetd/patch*
> Mark> I seem to remember that there are a couple of patches in different
> Mark> volumes spread over a bit of time.
> 
> `xinetd' *has* been ported to FreeBSD, by Chuck Murcko (chuck@telebase.com).
> Check out ftp://ftp.telebase.com/pub/security/xinetd.2.1.7-freebsd.4.tar.gz

I stand corrected. Perhaps this could be submitted to us as a port?

> I'm using it on a FreeBSD box, as is Chuck.  We use it here on a variety of
> platforms to which it was not originally ported by its author, Panos
> Tsirigotis.

Ports please, gentlemen!

> >> Is xinetd faster (suffering from less process start latency)
> >> than tcpd?
> 
> Mark> Fractionally. Probably not even so you'd notice.
> 
> IMO, xinetd's somewhat simpler to use than the inetd/tcp-wrappers
> combination.

Somewhat, yes.

M
--
Mark Murray
46 Harvey Rd, Claremont, Cape Town 7700, South Africa
+27 21 61-3768 GMT+0200
Finger mark@grondar.za for PGP key