From owner-freebsd-arch Mon Jun 26 15:33:55 2000 Delivered-To: freebsd-arch@freebsd.org Received: from obie.softweyr.com (obie.softweyr.com [204.68.178.33]) by hub.freebsd.org (Postfix) with ESMTP id ABF9237B8B1 for ; Mon, 26 Jun 2000 15:33:45 -0700 (PDT) (envelope-from wes@softweyr.com) Received: from softweyr.com (ip139.salt-lake-city6.ut.pub-ip.psi.net [38.27.95.139]) by obie.softweyr.com (8.8.8/8.8.8) with ESMTP id QAA22605; Mon, 26 Jun 2000 16:33:33 -0600 (MDT) (envelope-from wes@softweyr.com) Message-ID: <3957DA87.ACC18A28@softweyr.com> Date: Mon, 26 Jun 2000 16:34:47 -0600 From: Wes Peters Organization: Softweyr LLC X-Mailer: Mozilla 4.7 [en] (X11; U; FreeBSD 4.0-STABLE i386) X-Accept-Language: en MIME-Version: 1.0 To: Nate Williams Cc: Will Andrews , arch@FreeBSD.ORG Subject: Re: Disabling inetd? References: <20000626053525.U85886@argon.gryphonsoft.com> <200006261615.KAA18734@nomad.yogotech.com> Content-Type: text/plain; charset=us-ascii Content-Transfer-Encoding: 7bit Sender: owner-freebsd-arch@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Nate Williams wrote: > > > I was just a few minutes ago talking with some of my colleagues about > > disabling inetd completely in a default install. > > > > What are people's opinions about doing this? > > I think it's a bad idea, and assumes that the 'default' installation is > a box that's running 24/7 connected directly to the internet. > > I only have one box that is 'vulnerable' to the internet, and it's my > firewall. All the other boxes are inside the firewall, and can (and do) > run the other daemons since they are most useful, *especially* for > configuring the box. This is another great branch point for an install "flavor": normal vs. locked-down. -- "Where am I, and what am I doing in this handbasket?" Wes Peters Softweyr LLC wes@softweyr.com http://softweyr.com/ To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-arch" in the body of the message