source: server/other/xinetd.xml@ 9937138c

10.0 10.1 11.0 11.1 11.2 11.3 12.0 12.1 7.10 7.4 7.5 7.6 7.6-blfs 7.6-systemd 7.7 7.8 7.9 8.0 8.1 8.2 8.3 8.4 9.0 9.1 basic bdubbs/svn elogind gnome kde5-13430 kde5-14269 kde5-14686 kea ken/TL2024 ken/inkscape-core-mods ken/tuningfonts krejzi/svn lazarus lxqt nosym perl-modules plabs/newcss plabs/python-mods python3.11 qt5new rahul/power-profiles-daemon renodr/vulkan-addition systemd-11177 systemd-13485 trunk upgradedb xry111/intltool xry111/llvm18 xry111/soup3 xry111/test-20220226 xry111/xf86-video-removal
Last change on this file since 9937138c was 9937138c, checked in by Bruce Dubbs <bdubbs@…>, 12 years ago

Restore xinetd and upgrade to version 2.3.15

git-svn-id: svn://svn.linuxfromscratch.org/BLFS/trunk/BOOK@10587 af4574ff-66df-0310-9fd7-8a98e5e911e0
  • Property mode set to 100644
File size: 14.5 KB
Line 
1<?xml version="1.0" encoding="ISO-8859-1"?>
2<!DOCTYPE sect1 PUBLIC "-//OASIS//DTD DocBook XML V4.5//EN"
3 "http://www.oasis-open.org/docbook/xml/4.5/docbookx.dtd" [
4 <!ENTITY % general-entities SYSTEM "../../general.ent">
5 %general-entities;
6
7 <!ENTITY xinetd-download-http "http://www.xinetd.org/xinetd-&xinetd-version;.tar.gz">
8 <!ENTITY xinetd-download-ftp "&gentoo-ftp-repo;/xinetd-&xinetd-version;.tar.gz">
9 <!ENTITY xinetd-md5sum "77358478fd58efa6366accae99b8b04c">
10 <!ENTITY xinetd-size "308 KB">
11 <!ENTITY xinetd-buildsize "5.0 MB">
12 <!ENTITY xinetd-time "less than 0.1 SBU">
13]>
14
15<sect1 id="xinetd" xreflabel="xinetd-&xinetd-version;">
16 <?dbhtml filename="xinetd.html"?>
17
18 <sect1info>
19 <othername>$LastChangedBy$</othername>
20 <date>$Date$</date>
21 </sect1info>
22
23 <title>xinetd-&xinetd-version;</title>
24
25 <indexterm zone="xinetd">
26 <primary sortas="a-Xinetd">Xinetd</primary>
27 </indexterm>
28
29 <sect2 role="package">
30 <title>Introduction to xinetd</title>
31
32 <para><application>xinetd</application> is the eXtended InterNET services
33 daemon, a secure replacement for <command>inetd</command>.</para>
34
35 <bridgehead renderas="sect3">Package Information</bridgehead>
36 <itemizedlist spacing="compact">
37 <listitem>
38 <para>Download (HTTP): <ulink url="&xinetd-download-http;"/></para>
39 </listitem>
40 <listitem>
41 <para>Download (FTP): <ulink url="&xinetd-download-ftp;"/></para>
42 </listitem>
43 <listitem>
44 <para>Download MD5 sum: &xinetd-md5sum;</para>
45 </listitem>
46 <listitem>
47 <para>Download size: &xinetd-size;</para>
48 </listitem>
49 <listitem>
50 <para>Estimated disk space required: &xinetd-buildsize;</para>
51 </listitem>
52 <listitem>
53 <para>Estimated build time: &xinetd-time;</para>
54 </listitem>
55 </itemizedlist>
56
57 <bridgehead renderas="sect3">xinetd Dependencies</bridgehead>
58
59 <bridgehead renderas="sect4">Required</bridgehead>
60 <para role="required"><xref linkend="libtirpc"/></para>
61
62 <bridgehead renderas="sect4">Optional</bridgehead>
63 <para role="optional"><ulink url="ftp://ftp.porcupine.org/pub/security/">tcpwrappers (deprecated)</ulink></para>
64
65 <para condition="html" role="usernotes">User Notes:
66 <ulink url="&blfs-wiki;/xinetd"/></para>
67
68 </sect2>
69
70 <sect2 role="installation">
71 <title>Installation of xinetd</title>
72
73 <para>Install <application>xinetd</application> by running the following
74 commands:</para>
75
76<screen><userinput>sed -i -e "/^LIBS/s/-lpset/&amp; -ltirpc/" xinetd/Makefile.in &amp;&amp;
77sed -i -e "/register unsigned count/s/register//" xinetd/itox.c &amp;&amp;
78./configure --prefix=/usr --with-loadavg &amp;&amp;
79make</userinput></screen>
80
81 <para>This package does not come with a test suite.</para>
82
83 <para>Now, as the <systemitem class="username">root</systemitem> user:</para>
84
85<screen role="root"><userinput>make install</userinput></screen>
86
87 </sect2>
88
89 <sect2 role="commands">
90 <title>Command Explanations</title>
91
92 <para><command>sed ... xinetd/Makefile.in</command>: Ensure the program
93 links against the libtirpc library.</para>
94
95 <para><command>sed ... xinetd/itox.c</command>: Fix some compiler
96 warnings.</para>
97
98 </sect2>
99
100 <sect2 role="configuration">
101 <title>Configuring xinetd</title>
102
103 <sect3 id="xinetd-config">
104 <title>Config Files</title>
105
106 <para><filename>/etc/xinetd.conf</filename> and
107 <filename class='directory'>/etc/xinetd.d/*</filename></para>
108
109 <indexterm zone="xinetd xinetd-config">
110 <primary sortas="e-etc-xinetd.conf">/etc/xinetd.conf</primary>
111 </indexterm>
112
113 <indexterm zone="xinetd xinetd-config">
114 <primary sortas="e-etc-xinetd.d">/etc/xinetd.d/*</primary>
115 </indexterm>
116
117 </sect3>
118
119 <sect3>
120 <title>Configuration Information</title>
121
122 <para>Ensure the path to all daemons is
123 <filename class="directory">/usr/sbin</filename>, rather than the default
124 path of <filename class="directory">/usr/bin</filename>, and install the
125 <application>xinetd</application> configuration files by running the
126 following commands as the <systemitem class="username">root</systemitem>
127 user:</para>
128
129<screen role="root"><userinput>cat &gt; /etc/xinetd.conf &lt;&lt; "EOF"
130<literal># Begin /etc/xinetd
131# Configuration file for xinetd
132
133defaults
134{
135 instances = 60
136 log_type = SYSLOG daemon
137 log_on_success = HOST PID USERID
138 log_on_failure = HOST USERID
139 cps = 25 30
140}
141
142# All service files are stored in the /etc/xinetd.d directory
143
144includedir /etc/xinetd.d
145
146# End /etc/xinetd</literal>
147EOF</userinput></screen>
148
149 <para>All of the following files have the statement, "disable = yes".
150 To activate any of the services, this statement will need to be changed
151 to "disable = no".</para>
152
153 <note>
154 <para>The following files are listed to demonstrate several
155 <application>xinetd</application> applications. In many cases, these
156 applications are not needed. Some classic applications are
157 considered security risks. For example, <command>telnet</command>,
158 <command>rlogin</command>, <command>rexec</command>, and
159 <command>rsh</command> transmit unencrypted usernames and passwords
160 over the network and can be easily replaced with a more secure
161 alternative: <command>ssh</command>.</para>
162 </note>
163
164<screen role="root"><?dbfo keep-together="auto"?><userinput>install -v -d -m755 /etc/xinetd.d &amp;&amp;
165
166cat &gt; /etc/xinetd.d/systat &lt;&lt; "EOF" &amp;&amp;
167<literal># Begin /etc/xinetd.d/systat
168
169service systat
170{
171 disable = yes
172 socket_type = stream
173 wait = no
174 user = nobody
175 server = /usr/bin/ps
176 server_args = -auwwx
177 only_from = 128.138.209.0
178 log_on_success = HOST
179}
180
181# End /etc/xinetd.d/systat</literal>
182EOF
183
184cat &gt; /etc/xinetd.d/echo &lt;&lt; "EOF" &amp;&amp;
185<literal># Begin /etc/xinetd.d/echo
186
187service echo
188{
189 disable = yes
190 type = INTERNAL
191 id = echo-stream
192 socket_type = stream
193 protocol = tcp
194 user = root
195 wait = no
196}
197
198service echo
199{
200 disable = yes
201 type = INTERNAL
202 id = echo-dgram
203 socket_type = dgram
204 protocol = udp
205 user = root
206 wait = yes
207}
208
209# End /etc/xinetd.d/echo</literal>
210EOF
211
212cat &gt; /etc/xinetd.d/chargen &lt;&lt; "EOF" &amp;&amp;
213<literal># Begin /etc/xinetd.d/chargen
214
215service chargen
216{
217 disable = yes
218 type = INTERNAL
219 id = chargen-stream
220 socket_type = stream
221 protocol = tcp
222 user = root
223 wait = no
224}
225
226service chargen
227{
228 disable = yes
229 type = INTERNAL
230 id = chargen-dgram
231 socket_type = dgram
232 protocol = udp
233 user = root
234 wait = yes
235}
236
237# End /etc/xinetd.d/chargen</literal>
238EOF
239
240cat &gt; /etc/xinetd.d/daytime &lt;&lt; "EOF" &amp;&amp;
241<literal># Begin /etc/xinetd.d/daytime
242
243service daytime
244{
245 disable = yes
246 type = INTERNAL
247 id = daytime-stream
248 socket_type = stream
249 protocol = tcp
250 user = root
251 wait = no
252}
253
254service daytime
255{
256 disable = yes
257 type = INTERNAL
258 id = daytime-dgram
259 socket_type = dgram
260 protocol = udp
261 user = root
262 wait = yes
263}
264
265# End /etc/xinetd.d/daytime</literal>
266EOF
267
268cat &gt; /etc/xinetd.d/time &lt;&lt; "EOF" &amp;&amp;
269<literal># Begin /etc/xinetd.d/time
270
271service time
272{
273 disable = yes
274 type = INTERNAL
275 id = time-stream
276 socket_type = stream
277 protocol = tcp
278 user = root
279 wait = no
280}
281
282service time
283{
284 disable = yes
285 type = INTERNAL
286 id = time-dgram
287 socket_type = dgram
288 protocol = udp
289 user = root
290 wait = yes
291}
292
293# End /etc/xinetd.d/time</literal>
294EOF</userinput></screen>
295
296 <indexterm zone="xinetd xinetd-config">
297 <primary sortas="e-etc-xinetd.d-login">/etc/xinetd.d/login</primary>
298 </indexterm>
299
300 <indexterm zone="xinetd xinetd-config">
301 <primary sortas="e-etc-xinetd.d-shell">/etc/xinetd.d/shell</primary>
302 </indexterm>
303
304 <indexterm zone="xinetd xinetd-config">
305 <primary sortas="e-etc-xinetd.d-exec">/etc/xinetd.d/exec</primary>
306 </indexterm>
307
308 <indexterm zone="xinetd xinetd-config">
309 <primary sortas="e-etc-xinetd.d-comsat">/etc/xinetd.d/comsat</primary>
310 </indexterm>
311
312 <indexterm zone="xinetd xinetd-config">
313 <primary sortas="e-etc-xinetd.d-talk">/etc/xinetd.d/talk</primary>
314 </indexterm>
315
316 <indexterm zone="xinetd xinetd-config">
317 <primary sortas="e-etc-xinetd.d-ntalk">/etc/xinetd.d/ntalk</primary>
318 </indexterm>
319
320 <indexterm zone="xinetd xinetd-config">
321 <primary sortas="e-etc-xinetd.d-telnet">/etc/xinetd.d/telnet</primary>
322 </indexterm>
323
324 <indexterm zone="xinetd xinetd-config">
325 <primary sortas="e-etc-xinetd.d-ftp">/etc/xinetd.d/ftp</primary>
326 </indexterm>
327
328 <indexterm zone="xinetd xinetd-config">
329 <primary sortas="e-etc-xinetd.d-tftp">/etc/xinetd.d/tftp</primary>
330 </indexterm>
331
332 <indexterm zone="xinetd xinetd-config">
333 <primary sortas="e-etc-xinetd.d-systat">/etc/xinetd.d/systat</primary>
334 </indexterm>
335
336 <indexterm zone="xinetd xinetd-config">
337 <primary sortas="e-etc-xinetd.d-finger">/etc/xinetd.d/finger</primary>
338 </indexterm>
339
340 <indexterm zone="xinetd xinetd-config">
341 <primary sortas="e-etc-xinetd.d-netstat">/etc/xinetd.d/netstat</primary>
342 </indexterm>
343
344 <indexterm zone="xinetd xinetd-config">
345 <primary sortas="e-etc-xinetd.d-echo">/etc/xinetd.d/echo</primary>
346 </indexterm>
347
348 <indexterm zone="xinetd xinetd-config">
349 <primary sortas="e-etc-xinetd.d-chargen">/etc/xinetd.d/chargen</primary>
350 </indexterm>
351
352 <indexterm zone="xinetd xinetd-config">
353 <primary sortas="e-etc-xinetd.d-daytime">/etc/xinetd.d/daytime</primary>
354 </indexterm>
355
356 <indexterm zone="xinetd xinetd-config">
357 <primary sortas="e-etc-xinetd.d-time">/etc/xinetd.d/time</primary>
358 </indexterm>
359
360 <indexterm zone="xinetd xinetd-config">
361 <primary sortas="e-etc-xinetd.d-rstatd">/etc/xinetd.d/rstatd</primary>
362 </indexterm>
363
364 <indexterm zone="xinetd xinetd-config">
365 <primary sortas="e-etc-xinetd.d-rquotad">/etc/xinetd.d/rquotad</primary>
366 </indexterm>
367
368 <indexterm zone="xinetd xinetd-config">
369 <primary sortas="e-etc-xinetd.d-ruserd">/etc/xinetd.d/ruserd</primary>
370 </indexterm>
371
372 <indexterm zone="xinetd xinetd-config">
373 <primary sortas="e-etc-xinetd.d-sprayd">/etc/xinetd.d/sprayd</primary>
374 </indexterm>
375
376 <indexterm zone="xinetd xinetd-config">
377 <primary sortas="e-etc-xinetd.d-walld">/etc/xinetd.d/walld</primary>
378 </indexterm>
379
380 <indexterm zone="xinetd xinetd-config">
381 <primary sortas="e-etc-xinetd.d-irc">/etc/xinetd.d/irc</primary>
382 </indexterm>
383
384 <para>The format of the <filename>/etc/xinetd.conf</filename> is
385 documented in the <filename>xinetd.conf.5</filename> man page. Further
386 information can be found at <ulink url="http://www.xinetd.org"/>.</para>
387
388 </sect3>
389
390 <sect3 id="xinetd-init">
391 <title>Boot Script</title>
392
393 <para>As the <systemitem class="username">root</systemitem> user, install
394 the <filename>/etc/rc.d/init.d/xinetd</filename> init script included in
395 the <xref linkend="bootscripts"/> package.</para>
396
397 <indexterm zone="xinetd xinetd-init">
398 <primary sortas="f-xinetd">xinetd</primary>
399 </indexterm>
400
401<screen role="root"><userinput>make install-xinetd</userinput></screen>
402
403 <para>As the <systemitem class="username">root</systemitem> user,
404 use the new boot script to start <command>xinetd</command>:</para>
405
406<screen role="root"><userinput>/etc/rc.d/init.d/xinetd start</userinput></screen>
407
408 <para>Check the <filename>/var/log/daemon.log</filename> to ensure the
409 appropriate services are started. If no services are enabled, the program
410 will not start without the <option>-stayalive</option> option.</para>
411
412<!--
413<screen><literal>Aug 22 21:40:21 dps10 xinetd[2696]: Server /usr/sbin/in.rlogind is not
414executable [line=29]
415Aug 22 21:40:21 dps10 xinetd[2696]: Error parsing attribute server -
416DISABLING SERVICE [line=29]
417Aug 22 21:40:21 dps10 xinetd[2696]: Server /usr/sbin/in.rshd is not
418executable [line=42]</literal></screen>
419
420 <para>These errors are because most of the servers
421 <command>xinetd</command> is trying to control are not
422 installed yet.</para>
423-->
424 </sect3>
425
426 </sect2>
427
428 <sect2 role="content">
429 <title>Contents</title>
430
431 <segmentedlist>
432 <segtitle>Installed Programs</segtitle>
433 <segtitle>Installed Libraries</segtitle>
434 <segtitle>Installed Directories</segtitle>
435
436 <seglistitem>
437 <seg>itox, xconv.pl, and xinetd</seg>
438 <seg>None</seg>
439 <seg>/etc/xinetd.d/</seg>
440 </seglistitem>
441 </segmentedlist>
442
443 <variablelist>
444 <bridgehead renderas="sect3">Short Descriptions</bridgehead>
445 <?dbfo list-presentation="list"?>
446 <?dbhtml list-presentation="table"?>
447
448 <varlistentry id="itox">
449 <term><command>itox</command></term>
450 <listitem>
451 <para>is a utility used for converting
452 <filename>inetd.conf</filename> files to
453 <filename>xinetd.conf</filename> format.</para>
454 <indexterm zone="xinetd itox">
455 <primary sortas="b-itox">itox</primary>
456 </indexterm>
457 </listitem>
458 </varlistentry>
459
460 <varlistentry id="xconv.pl">
461 <term><command>xconv.pl</command></term>
462 <listitem>
463 <para>is a <application>Perl</application> script used for
464 converting <filename>inetd.conf</filename> files to
465 <filename>xinetd.conf</filename> format, similar to
466 <command>itox</command>.</para>
467 <indexterm zone="xinetd xconv.pl">
468 <primary sortas="b-xconv.pl">xconv.pl</primary>
469 </indexterm>
470 </listitem>
471 </varlistentry>
472
473 <varlistentry id="xinetd-prog">
474 <term><command>xinetd</command></term>
475 <listitem>
476 <para>is the Internet services daemon.</para>
477 <indexterm zone="xinetd xinetd-prog">
478 <primary sortas="b-xinetd">xinetd</primary>
479 </indexterm>
480 </listitem>
481 </varlistentry>
482
483 </variablelist>
484
485 </sect2>
486
487</sect1>
Note: See TracBrowser for help on using the repository browser.