LinuxQuestions.org
Visit Jeremy's Blog.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Security
User Name
Password
Linux - Security This forum is for all security related questions.
Questions, tips, system compromises, firewalls, etc. are all included here.

Notices

Reply
 
Search this Thread
Old 08-14-2003, 10:44 AM   #1
haylingchrist
LQ Newbie
 
Registered: Aug 2003
Location: Hayling Island UK
Distribution: RedHat
Posts: 2

Rep: Reputation: 0
xinetd, tcpd and libwrap on RH9 and 7.2


Hi,

In need to understand this in detail as I'm writing code to analyse wrapper config vulnerabilities on various *N*Xes.

As I understand it if you want to use /etc/hosts.allow(deny) on (say) Solaris, you use tcpd as a 'wrapper' to launch services in /etc/inetd.conf. Or you could link libwrap into your binary.

On RH I can't see tcpd used anywhere, but adding ALL:ALL to hosts.deny prevents access to rlogin (launched by xinetd) and sshd (launched from the init.d scripts).

As far as I can see it works the same on RH7 and RH9. On RH9 'ldd' shows libwrap linked into xinetd and sshd so I guess that makes sense. However, on RH7 ldd doesn't show libwarp as being liked into xinetd or sshd.

So here are my questions:
- How is tcpwrappers implimented on RH7?
- Can I use tcpd to launch any network service (say from the shell prompt) or just those in inetd.conf?
- Why doesn't adding to hosts.deny 'xinetd:ALL' prevent access to everything launched by xinetd? (try it..)

Thanks

Chris
 
Old 08-14-2003, 03:44 PM   #2
tyler0123
Member
 
Registered: Aug 2003
Posts: 134

Rep: Reputation: 16
doesn't hosts.deny get read before hosts.allow, so if you deny all, then can't you go to allow and allow just what you want and only those should get through? i am totally not sure. i thought that was the case. sorry if i am misleading you.
 
Old 08-14-2003, 04:13 PM   #3
haylingchrist
LQ Newbie
 
Registered: Aug 2003
Location: Hayling Island UK
Distribution: RedHat
Posts: 2

Original Poster
Rep: Reputation: 0
Tyler,
Thanks for trying, but you should have a look at 'man hosts.allow'....... allow is accessed first. 1st match wins.

My hosts.allow is empty. Anyway, I'm happy with the way allow/deny works (except for the xinetd:ALL entry being ignored). It's just I can't see _why_ wrappers works at all on RH7....
 
Old 08-14-2003, 04:42 PM   #4
tyler0123
Member
 
Registered: Aug 2003
Posts: 134

Rep: Reputation: 16
sorry about that. not in front of a linux box now. away from home. i apologize.
 
  


Reply


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
Libwrap aragorn Linux - General 1 06-08-2006 06:19 AM
start VNC through xinetd in RH9 UltraSoul Linux - Networking 0 07-28-2005 02:12 PM
i'm not /etc/rc.d/init.d/xinetd file in my RH9,who can post it. Linuxjia Linux - Networking 1 02-16-2004 09:26 PM
xinetd libwrap sqi_fam problem Ani Linux - Networking 1 10-09-2002 09:48 AM
xinetd + libwrap mysql Stanton Linux - Security 1 05-02-2001 06:41 AM


All times are GMT -5. The time now is 12:38 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration