source: server/other/xinetd.xml@ 65483be1

10.0 10.1 11.0 11.1 11.2 6.1 6.2 6.2.0 6.2.0-rc1 6.2.0-rc2 6.3 6.3-rc1 6.3-rc2 6.3-rc3 7.10 7.4 7.5 7.6 7.6-blfs 7.6-systemd 7.7 7.8 7.9 8.0 8.1 8.2 8.3 8.4 9.0 9.1 basic bdubbs/svn elogind gnome kde5-13430 kde5-14269 kde5-14686 krejzi/svn lazarus nosym perl-modules plabs/python-mods qt5new systemd-11177 systemd-13485 trunk upgradedb xry111/intltool xry111/soup3 xry111/test-20220226
Last change on this file since 65483be1 was 65483be1, checked in by Bruce Dubbs <bdubbs@…>, 18 years ago

Update xinetd index

git-svn-id: svn://svn.linuxfromscratch.org/BLFS/trunk/BOOK@3625 af4574ff-66df-0310-9fd7-8a98e5e911e0

  • Property mode set to 100644
File size: 17.9 KB
Line 
1<?xml version="1.0" encoding="ISO-8859-1"?>
2<!DOCTYPE sect1 PUBLIC "-//OASIS//DTD DocBook XML V4.3//EN"
3 "http://www.oasis-open.org/docbook/xml/4.3/docbookx.dtd" [
4 <!ENTITY % general-entities SYSTEM "../../general.ent">
5 %general-entities;
6
7<!ENTITY xinetd-download-http "http://www.xinetd.org/xinetd-&xinetd-version;.tar.gz">
8<!ENTITY xinetd-download-ftp " ">
9<!ENTITY xinetd-md5sum "4295b5fe12350f09b5892b363348ac8b">
10<!ENTITY xinetd-size "291 KB">
11<!ENTITY xinetd-buildsize "4.12 MB">
12<!ENTITY xinetd-time "0.11 SBU">
13]>
14
15<sect1 id="xinetd" xreflabel="xinetd-&xinetd-version;">
16<sect1info>
17 <othername>$LastChangedBy$</othername>
18 <date>$Date$</date>
19</sect1info>
20
21<?dbhtml filename="xinetd.html"?>
22<title>xinetd-&xinetd-version;</title>
23
24<indexterm zone="xinetd">
25 <primary sortas="a-Xinetd">Xinetd</primary>
26</indexterm>
27
28<sect2>
29<title>Introduction to <application>xinetd</application></title>
30
31<para><application>xinetd</application> is the eXtended InterNET services
32Daemon, a secure replacement for <command>inetd</command>.</para>
33
34<sect3>
35<title>Package information</title>
36<itemizedlist spacing='compact'>
37 <listitem><para>Download (HTTP): <ulink url="&xinetd-download-http;"/></para></listitem>
38 <listitem><para>Download (FTP): <ulink url="&xinetd-download-ftp;"/></para></listitem>
39 <listitem><para>Download MD5 sum: &xinetd-md5sum;</para></listitem>
40 <listitem><para>Download size: &xinetd-size;</para></listitem>
41 <listitem><para>Estimated disk space required: &xinetd-buildsize;</para></listitem>
42 <listitem><para>Estimated build time: &xinetd-time;</para></listitem>
43</itemizedlist>
44</sect3>
45
46<sect3>
47<title><application>xinetd</application> dependencies</title>
48
49<sect4>
50<title>Optional</title>
51 <para><xref linkend="tcpwrappers"/></para>
52</sect4>
53</sect3>
54
55</sect2>
56
57<sect2>
58<title>Installation of <application>xinetd</application></title>
59
60<para>Install <application>xinetd</application> by running the following
61commands:</para>
62
63<screen><userinput><command>./configure --prefix=/usr &amp;&amp;
64make</command></userinput></screen>
65
66<para>Now, as the root user:</para>
67
68<screen><userinput role='root'><command>make install</command></userinput></screen>
69
70</sect2>
71
72<sect2>
73<title>Configuring <application>xinetd</application></title>
74
75<sect3 id="xinetd-config">
76<title>Config files</title>
77
78<para><filename>/etc/xinetd.conf</filename></para>
79
80<indexterm zone="xinetd xinetd-config">
81 <primary sortas="e-etc-xinetd.conf">/etc/xinetd.conf</primary>
82</indexterm>
83</sect3>
84
85<sect3>
86<title>Configuration Information</title>
87
88<para>Ensure the path to all daemons is
89<filename class="directory">/usr/sbin</filename>, rather than the default path
90of <filename class="directory">/usr/etc</filename>, and install the
91<application>xinetd</application> configuration files by running the following
92commands as the root user:</para>
93
94<screen><userinput role='root'><command>cat &gt; /etc/xinetd.conf &lt;&lt; "EOF"</command>
95# Begin /etc/xinetd
96# Configuration file for xinetd
97#
98
99defaults
100{
101 instances = 60
102 log_type = SYSLOG daemon
103 log_on_success = HOST PID USERID
104 log_on_failure = HOST USERID
105 cps = 25 30
106}
107
108# All service files are stored in the /etc/xinetd.d directory
109#
110includedir /etc/xinetd.d
111# End /etc/xinetd
112<command>EOF</command></userinput></screen>
113
114<para>All of the following files have the statement, "disable = yes". To activate
115any of the services, this statement will need to be changed to "disable = no".</para>
116
117<note><para>The following files are listed to demonstrate classic
118<application>xinetd</application> applications. In many cases, these
119applications are not needed. In some cases, the applications are
120considered security risks. For example, telnet, rlogin, rexec, and rsh
121transmit unencrypted usernames and passwords over the network and can be easily
122replaced with a more secure alternative: ssh.</para></note>
123
124<screen><userinput role='root'><command>install -d -m755 /etc/xinetd.d &amp;&amp;</command>
125<command>cat &gt; /etc/xinetd.d/login &lt;&lt; "EOF" &amp;&amp;</command>
126# Begin /etc/xinetd.d/login
127
128service login
129{
130 disable = yes
131 socket_type = stream
132 protocol = tcp
133 wait = no
134 user = root
135 server = /usr/sbin/in.rlogind
136 log_type = SYSLOG local4 info
137}
138
139# End /etc/xinetd.d/login
140<command>EOF
141cat &gt; /etc/xinetd.d/shell &lt;&lt; "EOF" &amp;&amp;</command>
142# Begin /etc/xinetd.d/shell
143
144service shell
145{
146 disable = yes
147 socket_type = stream
148 wait = no
149 user = root
150 instances = UNLIMITED
151 flags = IDONLY
152 log_on_success += USERID
153 server = /usr/sbin/in.rshd
154}
155
156# End /etc/xinetd.d/shell
157<command>EOF
158cat &gt; /etc/xinetd.d/exec &lt;&lt; "EOF" &amp;&amp;</command>
159# Begin /etc/xinetd.d/exec
160
161service exec
162{
163 disable = yes
164 socket_type = stream
165 wait = no
166 user = root
167 server = /usr/sbin/in.rexecd
168}
169
170# End /etc/xinetd.d/exec
171<command>EOF
172cat &gt; /etc/xinetd.d/comsat &lt;&lt; "EOF" &amp;&amp;</command>
173# Begin /etc/xinetd.d/comsat
174
175service comsat
176{
177 disable = yes
178 socket_type = dgram
179 wait = yes
180 user = nobody
181 group = tty
182 server = /usr/sbin/in.comsat
183}
184
185# End /etc/xinetd.d/comsat
186<command>EOF
187cat &gt; /etc/xinetd.d/talk &lt;&lt; "EOF" &amp;&amp;</command>
188# Begin /etc/xinetd.d/talk
189
190service talk
191{
192 disable = yes
193 socket_type = dgram
194 wait = yes
195 user = root
196 server = /usr/sbin/in.talkd
197}
198
199# End /etc/xinetd.d/talk
200<command>EOF
201cat &gt; /etc/xinetd.d/ntalk &lt;&lt; "EOF" &amp;&amp;</command>
202# Begin /etc/xinetd.d/ntalk
203
204service ntalk
205{
206 disable = yes
207 socket_type = dgram
208 wait = yes
209 user = root
210 server = /usr/sbin/in.ntalkd
211}
212
213# End /etc/xinetd.d/ntalk
214<command>EOF
215cat &gt; /etc/xinetd.d/telnet &lt;&lt; "EOF" &amp;&amp;</command>
216# Begin /etc/xinetd.d/telnet
217
218service telnet
219{
220 disable = yes
221 socket_type = stream
222 wait = no
223 user = root
224 server = /usr/sbin/in.telnetd
225 bind = 127.0.0.1
226 log_on_failure += USERID
227}
228
229service telnet
230{
231 disable = yes
232 socket_type = stream
233 wait = no
234 user = root
235# server = /usr/sbin/in.telnetd
236 bind = 192.231.139.175
237 redirect = 128.138.202.20 23
238 log_on_failure += USERID
239}
240
241# End /etc/xinetd.d/telnet
242<command>EOF
243cat &gt; /etc/xinetd.d/ftp &lt;&lt; "EOF" &amp;&amp;</command>
244# Begin /etc/xinetd.d/ftp
245
246service ftp
247{
248 disable = yes
249 socket_type = stream
250 wait = no
251 user = root
252 server = /usr/sbin/in.ftpd
253 server_args = -l
254 instances = 4
255 log_on_success += DURATION USERID
256 log_on_failure += USERID
257 access_times = 2:00-8:59 12:00-23:59
258 nice = 10
259}
260
261# End /etc/xinetd.d/ftp
262<command>EOF
263cat &gt; /etc/xinetd.d/tftp &lt;&lt; "EOF" &amp;&amp;</command>
264# Begin /etc/xinetd.d/tftp
265
266service tftp
267{
268 disable = yes
269 socket_type = dgram
270 wait = yes
271 user = root
272 server = /usr/sbin/in.tftpd
273 server_args = -s /tftpboot
274}
275
276# End /etc/xinetd.d/tftp
277<command>EOF
278cat &gt; /etc/xinetd.d/finger &lt;&lt; "EOF" &amp;&amp;</command>
279# Begin /etc/xinetd.d/finger
280
281service finger
282{
283 disable = yes
284 socket_type = stream
285 wait = no
286 user = nobody
287 server = /usr/sbin/in.fingerd
288}
289
290# End /etc/xinetd.d/finger
291<command>EOF
292cat &gt; /etc/xinetd.d/systat &lt;&lt; "EOF" &amp;&amp;</command>
293# Begin /etc/xinetd.d/systat
294
295service systat
296{
297 disable = yes
298 socket_type = stream
299 wait = no
300 user = nobody
301 server = /usr/bin/ps
302 server_args = -auwwx
303 only_from = 128.138.209.0
304 log_on_success = HOST
305}
306
307# End /etc/xinetd.d/systat
308<command>EOF
309cat &gt; /etc/xinetd.d/netstat &lt;&lt; "EOF" &amp;&amp;</command>
310# Begin /etc/xinetd.d/netstat
311
312service netstat
313{
314 disable = yes
315 socket_type = stream
316 wait = no
317 user = nobody
318 server = /usr/ucb/netstat
319 server_args = -f inet
320 only_from = 128.138.209.0
321 log_on_success = HOST
322}
323
324# End /etc/xinetd.d/netstat
325<command>EOF
326cat &gt; /etc/xinetd.d/echo &lt;&lt; "EOF" &amp;&amp;</command>
327# Begin /etc/xinetd.d/echo
328
329service echo
330{
331 disable = yes
332 type = INTERNAL
333 id = echo-stream
334 socket_type = stream
335 protocol = tcp
336 user = root
337 wait = no
338}
339
340service echo
341{
342 disable = yes
343 type = INTERNAL
344 id = echo-dgram
345 socket_type = dgram
346 protocol = udp
347 user = root
348 wait = yes
349}
350
351# End /etc/xinetd.d/echo
352<command>EOF
353cat &gt; /etc/xinetd.d/chargen &lt;&lt; "EOF" &amp;&amp;</command>
354# Begin /etc/xinetd.d/chargen
355
356service chargen
357{
358 disable = yes
359 type = INTERNAL
360 id = chargen-stream
361 socket_type = stream
362 protocol = tcp
363 user = root
364 wait = no
365}
366
367service chargen
368{
369 disable = yes
370 type = INTERNAL
371 id = chargen-dgram
372 socket_type = dgram
373 protocol = udp
374 user = root
375 wait = yes
376}
377
378# End /etc/xinetd.d/chargen
379<command>EOF
380cat &gt; /etc/xinetd.d/daytime &lt;&lt; "EOF" &amp;&amp;</command>
381# Begin /etc/xinetd.d/daytime
382
383service daytime
384{
385 disable = yes
386 type = INTERNAL
387 id = daytime-stream
388 socket_type = stream
389 protocol = tcp
390 user = root
391 wait = no
392}
393
394service daytime
395{
396 disable = yes
397 type = INTERNAL
398 id = daytime-dgram
399 socket_type = dgram
400 protocol = udp
401 user = root
402 wait = yes
403}
404
405# End /etc/xinetd.d/daytime
406<command>EOF
407cat &gt; /etc/xinetd.d/time &lt;&lt; "EOF" &amp;&amp;</command>
408# Begin /etc/xinetd.d/time
409
410service time
411{
412 disable = yes
413 type = INTERNAL
414 id = time-stream
415 socket_type = stream
416 protocol = tcp
417 user = root
418 wait = no
419}
420
421
422service time
423{
424 disable = yes
425 type = INTERNAL
426 id = time-dgram
427 socket_type = dgram
428 protocol = udp
429 user = root
430 wait = yes
431}
432
433# End /etc/xinetd.d/time
434<command>EOF
435cat &gt; /etc/xinetd.d/rstatd &lt;&lt; "EOF" &amp;&amp;</command>
436# Begin /etc/xinetd.d/rstatd
437
438ervice rstatd
439{
440 disable = yes
441 type = RPC
442 flags = INTERCEPT
443 rpc_version = 2-4
444 socket_type = dgram
445 protocol = udp
446 server = /usr/sbin/rpc.rstatd
447 wait = yes
448 user = root
449}
450
451# End /etc/xinetd.d/rstatd
452<command>EOF
453cat &gt; /etc/xinetd.d/rquotad &lt;&lt; "EOF" &amp;&amp;</command>
454# Begin /etc/xinetd.d/rquotad
455
456service rquotad
457{
458 disable = yes
459 type = RPC
460 rpc_version = 1
461 socket_type = dgram
462 protocol = udp
463 wait = yes
464 user = root
465 server = /usr/sbin/rpc.rstatd
466}
467
468# End /etc/xinetd.d/rquotad
469<command>EOF
470cat &gt; /etc/xinetd.d/rusersd &lt;&lt; "EOF" &amp;&amp;</command>
471# Begin /etc/xinetd.d/rusersd
472
473service rusersd
474{
475 disable = yes
476 type = RPC
477 rpc_version = 1-2
478 socket_type = dgram
479 protocol = udp
480 wait = yes
481 user = root
482 server = /usr/sbin/rpc.rusersd
483}
484
485# End /etc/xinetd.d/rusersd
486<command>EOF
487cat &gt; /etc/xinetd.d/sprayd &lt;&lt; "EOF" &amp;&amp;</command>
488# Begin /etc/xinetd.d/sprayd
489
490service sprayd
491{
492 disable = yes
493 type = RPC
494 rpc_version = 1
495 socket_type = dgram
496 protocol = udp
497 wait = yes
498 user = root
499 server = /usr/sbin/rpc.sprayd
500}
501
502# End /etc/xinetd.d/sprayd
503<command>EOF
504cat &gt; /etc/xinetd.d/walld &lt;&lt; "EOF" &amp;&amp;</command>
505# Begin /etc/xinetd.d/walld
506
507service walld
508{
509 disable = yes
510 type = RPC
511 rpc_version = 1
512 socket_type = dgram
513 protocol = udp
514 wait = yes
515 user = nobody
516 group = tty
517 server = /usr/sbin/rpc.rwalld
518}
519
520# End /etc/xinetd.d/walld
521<command>EOF
522cat &gt; /etc/xinetd.d/irc &lt;&lt; "EOF"</command>
523# Begin /etc/xinetd.d/irc
524
525service irc
526{
527 disable = yes
528 socket_type = stream
529 wait = no
530 user = root
531 flags = SENSOR
532 type = INTERNAL
533 bind = 192.168.1.30
534 deny_time = 60
535}
536
537# End /etc/xinetd.d/irc
538<command>EOF</command></userinput></screen>
539
540<indexterm zone="xinetd xinetd-config">
541 <primary sortas="e-etc-xinetd.d-login">/etc/xinetd.d/login</primary>
542</indexterm>
543
544<indexterm zone="xinetd xinetd-config">
545 <primary sortas="e-etc-xinetd.d-shell">/etc/xinetd.d/shell</primary>
546</indexterm>
547
548<indexterm zone="xinetd xinetd-config">
549 <primary sortas="e-etc-xinetd.d-exec">/etc/xinetd.d/exec</primary>
550</indexterm>
551
552<indexterm zone="xinetd xinetd-config">
553 <primary sortas="e-etc-xinetd.d-comsat">/etc/xinetd.d/comsat</primary>
554</indexterm>
555
556<indexterm zone="xinetd xinetd-config">
557 <primary sortas="e-etc-xinetd.d-talk">/etc/xinetd.d/talk</primary>
558</indexterm>
559
560<indexterm zone="xinetd xinetd-config">
561 <primary sortas="e-etc-xinetd.d-ntalk">/etc/xinetd.d/ntalk</primary>
562</indexterm>
563
564<indexterm zone="xinetd xinetd-config">
565 <primary sortas="e-etc-xinetd.d-telnet">/etc/xinetd.d/telnet</primary>
566</indexterm>
567
568<indexterm zone="xinetd xinetd-config">
569 <primary sortas="e-etc-xinetd.d-ftp">/etc/xinetd.d/ftp</primary>
570</indexterm>
571
572<indexterm zone="xinetd xinetd-config">
573 <primary sortas="e-etc-xinetd.d-tftp">/etc/xinetd.d/tftp</primary>
574</indexterm>
575
576<indexterm zone="xinetd xinetd-config">
577 <primary sortas="e-etc-xinetd.d-systat">/etc/xinetd.d/systat</primary>
578</indexterm>
579
580<indexterm zone="xinetd xinetd-config">
581 <primary sortas="e-etc-xinetd.d-finger">/etc/xinetd.d/finger</primary>
582</indexterm>
583
584<indexterm zone="xinetd xinetd-config">
585 <primary sortas="e-etc-xinetd.d-netstat">/etc/xinetd.d/netstat</primary>
586</indexterm>
587
588<indexterm zone="xinetd xinetd-config">
589 <primary sortas="e-etc-xinetd.d-echo">/etc/xinetd.d/echo</primary>
590</indexterm>
591
592<indexterm zone="xinetd xinetd-config">
593 <primary sortas="e-etc-xinetd.d-chargen">/etc/xinetd.d/chargen</primary>
594</indexterm>
595
596<indexterm zone="xinetd xinetd-config">
597 <primary sortas="e-etc-xinetd.d-daytime">/etc/xinetd.d/daytime</primary>
598</indexterm>
599
600<indexterm zone="xinetd xinetd-config">
601 <primary sortas="e-etc-xinetd.d-time">/etc/xinetd.d/time</primary>
602</indexterm>
603
604<indexterm zone="xinetd xinetd-config">
605 <primary sortas="e-etc-xinetd.d-rstatd">/etc/xinetd.d/rstatd</primary>
606</indexterm>
607
608<indexterm zone="xinetd xinetd-config">
609 <primary sortas="e-etc-xinetd.d-rquotad">/etc/xinetd.d/rquotad</primary>
610</indexterm>
611
612<indexterm zone="xinetd xinetd-config">
613 <primary sortas="e-etc-xinetd.d-ruserd">/etc/xinetd.d/ruserd</primary>
614</indexterm>
615
616<indexterm zone="xinetd xinetd-config">
617 <primary sortas="e-etc-xinetd.d-sprayd">/etc/xinetd.d/sprayd</primary>
618</indexterm>
619
620<indexterm zone="xinetd xinetd-config">
621 <primary sortas="e-etc-xinetd.d-walld">/etc/xinetd.d/walld</primary>
622</indexterm>
623
624<indexterm zone="xinetd xinetd-config">
625 <primary sortas="e-etc-xinetd.d-irc">/etc/xinetd.d/irc</primary>
626</indexterm>
627
628
629
630<para>The format of the <filename>/etc/xinetd.conf</filename> is
631documented in the <filename>xinetd.conf.5</filename> man page. Further
632information can be found at <ulink url="http://www.xinetd.org"/>.</para>
633
634<para id="xinetd-init">As the root user, install the
635<filename>/etc/rc.d/init.d/xinetd</filename> init script included in the
636<xref linkend="intro-important-bootscripts"/> package.</para>
637
638<indexterm zone="xinetd xinetd-init">
639 <primary sortas="f-xinetd">xinetd</primary>
640</indexterm>
641
642<screen><userinput role='root'><command>make install-xinetd</command></userinput></screen>
643
644<para>As the root user, use the new boot script to start
645<command>xinetd</command>:</para>
646
647<screen><userinput role='root'><command>/etc/rc.d/init.d/xinetd start</command></userinput></screen>
648
649<para>Checking the <filename>/var/log/daemon.log</filename> file
650should prove quite entertaining. This file may contain entries
651similar to the following:</para>
652
653<screen>Aug 22 21:40:21 dps10 xinetd[2696]: Server /usr/sbin/in.rlogind is not
654executable [line=29]
655Aug 22 21:40:21 dps10 xinetd[2696]: Error parsing attribute server -
656DISABLING SERVICE [line=29]
657Aug 22 21:40:21 dps10 xinetd[2696]: Server /usr/sbin/in.rshd is not
658executable [line=42]</screen>
659
660<para>These errors are because most of the servers <command>xinetd</command>
661is trying to control are not installed yet.</para>
662</sect3>
663
664</sect2>
665
666<sect2>
667<title>Contents</title>
668
669<segmentedlist>
670<segtitle>Installed Programs</segtitle>
671<segtitle>Installed Libraries</segtitle>
672<segtitle>Installed Directories</segtitle>
673
674<seglistitem>
675<seg>itox, xconv.pl and xinetd</seg>
676<seg>None</seg>
677<seg>/etc/xinetd.d/</seg>
678</seglistitem>
679</segmentedlist>
680
681<variablelist>
682<bridgehead renderas="sect3">Short Descriptions</bridgehead>
683<?dbfo list-presentation="list"?>
684
685<varlistentry id="itox">
686<term><command>itox</command></term>
687<listitem><para>is a utility used for converting
688<filename>inetd.conf</filename> files to
689<filename>xinetd.conf</filename> format.</para>
690<indexterm zone="xinetd itox">
691<primary sortas="b-itox">itox</primary>
692</indexterm></listitem>
693</varlistentry>
694
695<varlistentry id="xconv.pl">
696<term><command>xconv.pl</command></term>
697<listitem><para>is a <application>Perl</application> script used for
698converting <filename>inetd.conf</filename> files to
699<filename>xinetd.conf</filename> format, similar to
700<command>itox</command>.</para>
701<indexterm zone="xinetd xconv.pl">
702<primary sortas="b-xconv.pl">xconv.pl</primary>
703</indexterm></listitem>
704</varlistentry>
705
706<varlistentry id="xinetd-prog">
707<term><command>xinetd</command></term>
708<listitem><para>is the Internet services daemon.</para>
709<indexterm zone="xinetd xinetd-prog">
710<primary sortas="b-xinetd">xinetd</primary>
711</indexterm></listitem>
712</varlistentry>
713</variablelist>
714
715</sect2>
716
717</sect1>
Note: See TracBrowser for help on using the repository browser.