Ticket #56: tcpwrappers.patch
File tcpwrappers.patch, 8.0 KB (added by , 22 years ago) |
---|
-
basicnet.ent
diff --exclude=CVS --exclude='portmap*' -Naur ./basicnet.ent /home/billy/NEWBLFS/BOOK/basicnet/basicnet.ent
old new 24 24 <!ENTITY % cvs SYSTEM "netprogs/cvs/cvs.ent"> 25 25 <!ENTITY % wget SYSTEM "netprogs/wget/wget.ent"> 26 26 <!ENTITY % portmap SYSTEM "netprogs/portmap/portmap.ent"> 27 <!ENTITY % tcpwrappers SYSTEM "netprogs/tcpwrappers/tcpwrappers.ent"> 27 28 %ncftp; 28 29 %telnet; 29 30 %cvs; 30 31 %wget; 31 32 %portmap; 33 %tcpwrappers; 32 34 33 35 <!-- Basic Networking Utilities --> 34 36 <!ENTITY basicnet-netutils SYSTEM "netutils/netutils.xml"> -
netprogs/netprogs.xml
diff --exclude=CVS --exclude='portmap*' -Naur ./netprogs/netprogs.xml /home/billy/NEWBLFS/BOOK/basicnet/netprogs/netprogs.xml
old new 8 8 &cvs; 9 9 &wget; 10 10 &portmap; 11 &tcpwrappers; 11 12 12 13 </chapter> -
netprogs/tcpwrappers/tcpwrappers-config.xml
diff --exclude=CVS --exclude='portmap*' -Naur ./netprogs/tcpwrappers/tcpwrappers-config.xml /home/billy/NEWBLFS/BOOK/basicnet/netprogs/tcpwrappers/tcpwrappers-config.xml
old new 1 <sect2> 2 <title>Configuring tcpwrappers</title> 3 4 <sect3><title>Config files</title> 5 <para><userinput>/etc/hosts.allow, /etc/hosts.deny, 6 </userinput></para> 7 8 <para>File protections: the wrapper, all files used by the wrapper, 9 and all directories in the path leading to those files, should be 10 accessible but not writable for unprivileged users (mode 755 or mode 11 555). Do not install the wrapper set-uid.</para> 12 13 <para> 14 Then perform the following edits on the 15 <filename>/etc/inetd.conf</filename> configuration file : 16 <screen><userinput> 17 finger stream tcp nowait nobody /usr/sbin/in.fingerd in.fingerd 18 </userinput></screen> 19 becomes: 20 <screen><userinput> 21 finger stream tcp nowait nobody /usr/sbin/tcpd in.fingerd 22 </userinput></screen></para> 23 <note><para>The finger server is used as an example here.</para></note> 24 <para>Similar changes must be made if xinted is used, with the 25 emphasis being on calling /usr/sbin/tcpd instead of calling the 26 service daemon directly, and passing the name of the service daemon to 27 tcpd.</para> 28 </sect3> 29 30 </sect2> 31 -
netprogs/tcpwrappers/tcpwrappers-desc.xml
diff --exclude=CVS --exclude='portmap*' -Naur ./netprogs/tcpwrappers/tcpwrappers-desc.xml /home/billy/NEWBLFS/BOOK/basicnet/netprogs/tcpwrappers/tcpwrappers-desc.xml
old new 1 <sect2> 2 <title>Contents</title> 3 4 <para>The tcpwrappers package contains 5 6 safe_finger tcpd tcpdchk tcpdmatch try-from 7 8 <userinput>tcpd</userinput>, 9 <userinput>tcpdchk</userinput>, 10 <userinput>tcpdmatch</userinput>, 11 <userinput>try-from</userinput> and 12 <userinput>safe_finger</userinput>.</para> 13 </sect2> 14 15 <sect2><title>Description</title> 16 17 <sect3><title>tcpd</title> 18 <para>tcpd is the main access control daemon for all internet 19 services, which inetd or xinetd will run instead of running the 20 requested service daemon.</para></sect3> 21 22 <sect3><title>tcpdchk</title> 23 <para>tcpdchk is a tool to examine a tcpd wrapper configuration and 24 report problems with it.</para></sect3> 25 26 <sect3><title>tcpdmatch</title> 27 <para>tcpdmatch is used to predict how the tcp wrapper would handle a 28 specific request for a service.</para></sect3> 29 30 <sect3><title>try-from</title> 31 <para>try-from can be called via a remote shell command to find out if 32 the host name and address are properly recognized.</para></sect3> 33 34 <sect3><title>safe_finger</title> 35 <para>safe_finger is a wrapper for the finger utility, to provide 36 automatic reverse name lookups.</para></sect3> 37 38 </sect2> 39 -
netprogs/tcpwrappers/tcpwrappers-exp.xml
diff --exclude=CVS --exclude='portmap*' -Naur ./netprogs/tcpwrappers/tcpwrappers-exp.xml /home/billy/NEWBLFS/BOOK/basicnet/netprogs/tcpwrappers/tcpwrappers-exp.xml
old new 1 <sect2> 2 <title>Command explanations</title> 3 4 <para><userinput>patch -Np1 -i ../tcp_wrappers_7.6.diff : </userinput> 5 6 This patch alters the original path and logging facility of the 7 original tcpwrappers program.</para> 8 9 </sect2> 10 -
netprogs/tcpwrappers/tcpwrappers-inst.xml
diff --exclude=CVS --exclude='portmap*' -Naur ./netprogs/tcpwrappers/tcpwrappers-inst.xml /home/billy/NEWBLFS/BOOK/basicnet/netprogs/tcpwrappers/tcpwrappers-inst.xml
old new 1 <sect2> 2 <title>Installation of tcpwrappers</title> 3 4 <para>.</para> 5 6 <para>Install tcpwrappers with the following commands:</para> 7 8 <para><screen><userinput> 9 patch -Np1 -i ../tcp_wrappers_7.6.diff && 10 make REAL_DAEMON_DIR=/usr/sbin linux && 11 cp libwrap.a /usr/lib && 12 cp tcpd.h /usr/include && 13 cp safe_finger /usr/sbin && 14 cp tcpd /usr/sbin && 15 cp tcpdchk /usr/sbin && 16 cp tcpdmatch /usr/sbin && 17 cp try-from /usr/sbin 18 </userinput></screen></para> 19 20 </sect2> 21 -
netprogs/tcpwrappers/tcpwrappers-intro.xml
diff --exclude=CVS --exclude='portmap*' -Naur ./netprogs/tcpwrappers/tcpwrappers-intro.xml /home/billy/NEWBLFS/BOOK/basicnet/netprogs/tcpwrappers/tcpwrappers-intro.xml
old new 1 <sect2> 2 <title>Introduction to tcpwrappers</title> 3 4 <screen> 5 Download location (HTTP): <ulink url="&tcpwrappers-download-http;"/> 6 Version used: &tcpwrappers-version; 7 Package size: &tcpwrappers-size; 8 Estimated Disk space required: &tcpwrappers-buildsize;</screen> 9 10 <para>Required patch</para> 11 12 <screen> 13 Download location (HTTP): <ulink url="&tcpwrappers-patch-http;"/> 14 </screen> 15 16 <para>The tcpwrappers package provides daemon wrapper programs that 17 report the name of the client requesting network services and the 18 requested service.</para> 19 20 </sect2> -
netprogs/tcpwrappers/tcpwrappers.ent
diff --exclude=CVS --exclude='portmap*' -Naur ./netprogs/tcpwrappers/tcpwrappers.ent /home/billy/NEWBLFS/BOOK/basicnet/netprogs/tcpwrappers/tcpwrappers.ent
old new 1 <!ENTITY tcpwrappers SYSTEM "../tcpwrappers.xml"> 2 <!ENTITY tcpwrappers-intro SYSTEM "tcpwrappers-intro.xml"> 3 <!ENTITY tcpwrappers-inst SYSTEM "tcpwrappers-inst.xml"> 4 <!ENTITY tcpwrappers-exp SYSTEM "tcpwrappers-exp.xml"> 5 <!ENTITY tcpwrappers-desc SYSTEM "tcpwrappers-desc.xml"> 6 <!ENTITY tcpwrappers-config SYSTEM "tcpwrappers-config.xml"> 7 <!ENTITY tcpwrappers-buildsize "720 KB"> 8 <!ENTITY tcpwrappers-version "5"> 9 10 <!ENTITY tcpwrappers-download-http 11 "http://files.ichilton.co.uk/nfs/tcp_wrappers_7.6.diff.gz"> 12 <!ENTITY tcpwrappers-patch-http "http://files.ichilton.co.uk/nfs/tcp_wrappers_7.6.tar.gz"> 13 <!ENTITY tcpwrappers-size "100 KB"> -
netprogs/tcpwrappers.xml
diff --exclude=CVS --exclude='portmap*' -Naur ./netprogs/tcpwrappers.xml /home/billy/NEWBLFS/BOOK/basicnet/netprogs/tcpwrappers.xml
old new 1 <sect1 id="tcpwrappers" xreflabel="tcpwrappers-&tcpwrappers-version;"> 2 <?dbhtml filename="tcpwrappers.html" dir="basicnet"?> 3 <title>tcpwrappers-&tcpwrappers-version;</title> 4 5 &tcpwrappers-intro; 6 &tcpwrappers-inst; 7 &tcpwrappers-exp; 8 &tcpwrappers-config; 9 &tcpwrappers-desc; 10 11 </sect1> 12