xinetd_2.1.8.8pre3_phbc50 for 03x

Announcements of packages that are now released.

Postby PHBC50 » Wed Jun 22, 2005 7:17 pm

Hey all,
I've packaged <a href='http://www.xinetd.org/' target='_blank'>xinetd</a> for FREESCO, v0.3.x :

xinetd is a secure replacement for inetd, it is designed to work on machines connected to the internet :

Let's see why :
1) It can do access control on all services based on:

a. address of remote host
b. time of access
c. name of remote host
d. domain name of remote host

2) Access control works on all services, whether multi-threaded or single-threaded and for both the TCP and UDP protocols. All UDP packets can be checked as well as all TCP connections.
3) It provides hard reconfiguration:

a. kills servers for services that are no longer in the configuration file
b. kills servers that no longer meet the access control criteria

4) It can prevent denial-of-access attacks by

a. placing limits on the number of servers for each service (avoids process table overflows)
b. placing an upper bound on the number of processes it will fork
c. placing limits on the size of log files it creates
d. placing limits on the number of connection a single host can initiate
e. place limits on the rate of incoming connections
f. discontinue services if the load exceeds specified limit

5) Extensive logging abilities:

a. for every server started it can log:

i) the time when the server was started
ii) the remote host address
iii) who was the remote user (if the other end runs a RFC-931/RFC-1413 server)
iv) how long the server was running
(i, ii and iii can be logged for failed attempts too).

b. for some services, if the access control fails, it can log information about the attempted access (for example, it can log the user name and command for the rsh service)

6) No limit on number of server arguments
7) You can bind specifc services to specific IP's on your host machine


This package will automatically create your config from inetd.conf if you have perl. Otherwise xinetd.conf must be edited to add your services.

Important : Inetd is NOT compatible with xinetd, so install and let the package configure xinetd, but once you have updated your config you must either disable inetd via the setup/package menu, or uninstall inetd.

Check your logs for info and the man pages in /pkg/man.

(With xinetd adding services to /etc/services file is no longer required.)

Code: Select all
pkg -i http://freesco.zapto.org/packages/03x/xinetd_2.1.8.8pre3_phbc50


Best regards,
phbc50
The only way of discovering the limits of the possible is to venture a little way past them into the impossible. (Arthur C Clarke)
User avatar
PHBC50
Junior Advanced Member
 
Posts: 139
Joined: Thu Nov 21, 2002 8:59 pm
Location: France

Postby Breathewave » Wed Jul 20, 2005 2:11 pm

Please upload the file again,thanks :)
User avatar
Breathewave
Newbie
 
Posts: 2
Joined: Sat Dec 11, 2004 4:28 am
Location: Germany

Postby PHBC50 » Wed Jul 20, 2005 3:03 pm

I am currently away ( vacations) , but will get that fixed as soon as possible,
an alternative download location is :
<a href='http://freesco.dyndns.org/xinetd_2.1.8.8pre3_phbc50' target='_blank'>here</a>
Sorry for the inconvenience,
:( regards,
phbc50
The only way of discovering the limits of the possible is to venture a little way past them into the impossible. (Arthur C Clarke)
User avatar
PHBC50
Junior Advanced Member
 
Posts: 139
Joined: Thu Nov 21, 2002 8:59 pm
Location: France


Return to 3rd Party Package Release Announcements

Who is online

Users browsing this forum: No registered users and 4 guests

cron