|
|
BugTraq
11 years of inetd default insecurity? Sep 06 2003 02:08PM 3APA3A (3APA3A SECURITY NNOV RU) (5 replies) Re: 11 years of inetd default insecurity? Sep 08 2003 05:50PM Mike Tancsa (mike sentex net) (1 replies) Re: 11 years of inetd default insecurity? Sep 09 2003 02:07PM Jonathan A. Zdziarski (jonathan nuclearelephant com) (1 replies) Re: 11 years of inetd default insecurity? Sep 08 2003 01:46AM Thamer Al-Harbash (tmh whitefang com) (1 replies) Re: 11 years of inetd default insecurity? Sep 08 2003 07:44PM Dan Stromberg (strombrg dcs nac uci edu) (1 replies) Re: 11 years of inetd default insecurity? Sep 07 2003 09:59PM Dagmar d'Surreal (dagmar wants nospam com) (1 replies) |
|
Privacy Statement |
> II. Who is vulnerable
>
> Any system shipped with network daemons launched through inetd
> (FreeBSD, SuSE, Red Hat, etc.).
FreeBSD doesn't run anything through inetd by default. You have to
manually edit inetd.conf to enable anything, and there is a warning
screen during the install process about doing so.
Additionally, FreeBSD's stock inetd has the following options:
-c maximum
Specify the default maximum number of simultaneous
invocations of each service; the default is unlimited.
May be overridden on a per-service basis with the
"max-child" parameter.
-C rate
Specify the default maximum number of times a service can
be invoked from a single IP address in one minute; the
default is unlimited. May be overridden on a per-service
basis with the "max-connections-per-ip-per-minute"
parameter.
-R rate
Specify the maximum number of times a service can be
invoked in one minute; the default is 256. A rate of 0
allows an unlimited number of invocations.
-s maximum
Specify the default maximum number of simultaneous
invocations of each service from a single IP address; the
default is unlimited. May be overridden on a per-service
basis with the "max-child-per-ip" parameter.
[ reply ]