LinuxQuestions.org
Review your favorite Linux distribution.
Go Back   LinuxQuestions.org > Forums > Linux Forums > Linux - Distributions > Slackware
User Name
Password
Slackware This Forum is for the discussion of Slackware Linux.

Notices

Reply
 
Search this Thread
Old 05-09-2006, 07:59 PM   #1
Andriy
Member
 
Registered: Dec 2005
Distribution: Slackware, SLAX, Redhat, Fedora
Posts: 133

Rep: Reputation: 15
Wink Who uses xinetd on slackware?


Anyone? And what are the ups and downs of using xinetd on slack?
 
Old 05-10-2006, 11:39 AM   #2
d00bid00b
Member
 
Registered: Aug 2005
Location: London, UK
Distribution: Debian Testing
Posts: 157

Rep: Reputation: 30
I think that if you want to set up NFS at some point, then it is used for that, but aside from that, I think it really only applies if you are running a server. I write under correction however
 
Old 05-10-2006, 06:49 PM   #3
Andriy
Member
 
Registered: Dec 2005
Distribution: Slackware, SLAX, Redhat, Fedora
Posts: 133

Original Poster
Rep: Reputation: 15
Question

Quote:
Originally Posted by d00bid00b
I think that if you want to set up NFS at some point, then it is used for that, but aside from that, I think it really only applies if you are running a server. I write under correction however
But from a security point of view that I have read in CERT, xinetd makes security better than slack's default inetd. So, why just for servers?
 
Old 05-10-2006, 09:23 PM   #4
cwwilson721
Senior Member
 
Registered: Dec 2004
Location: In my house.
Distribution: Ubuntu 10.10 64bit, Slackware 13.1 64-bit
Posts: 2,649
Blog Entries: 1

Rep: Reputation: 65
Why, exactly, is xinetd 'more secure' than inetd?

I know that other distros use xinetd, but I would have to laugh at the concept that they are 'more secure' than a well-thought out Slackware server or desktop/laptop.

I think you need to take all claims with a grain of salt. inetd works, is stable, and foremost, does the job. I'm fairly sure there is a reason why Pat has decided to stick with inetd instead of xinetd. There might be other, hidden issues that makes xinetd not feasible for Slackware.
 
Old 05-11-2006, 07:47 AM   #5
Andriy
Member
 
Registered: Dec 2005
Distribution: Slackware, SLAX, Redhat, Fedora
Posts: 133

Original Poster
Rep: Reputation: 15
Wink

Quote:
Why, exactly, is xinetd 'more secure' than inetd?
First and foremost, I do not know. This is exactly the reason why I posted this question. Second, although I did not assume that CERT is indeed the fountain of knowledge for all things security, I think there is a reason behind them promoting xinetd instead of just the default inetd.[HTML]http://www.cert.org/tech_tips/unix_security_checklist2.0.html[/HTML]

Quote:
I think you need to take all claims with a grain of salt.
Indeed, which is why I am asking for everyone's opinion regarding the subject.
 
Old 11-15-2007, 10:10 PM   #6
arfon
Member
 
Registered: Apr 2004
Location: Texas - Dang, it's hot!
Distribution: Slackware, Slackware64, Slax, CentOS (when I have to)
Posts: 131

Rep: Reputation: Disabled
xinetd is a replacement for inetd that is more configurable. inetd is a fairly dangerous program because it has no built in protection from malicious attacks (e.g. tar-pitting, flooding, etc.). xinetd HAS built in configurable protections against such attacks.

inetd will happily take as many connections as an attacker will send until your box crashes, it will also happliy try and keep up with data-flooding attacks until your box crashes. Xinetd has configurations to limit these kinds of attacks.

And what are the ups and downs of using xinetd on slack?

The UPs are that it's safer than inetd. The DOWN is that you have to compile, install and configure it yourself. As of this writing, there's no package for S12 on linuxpackages.net.


I think that if you want to set up NFS at some point, then it is used for that, but aside from that, I think it really only applies if you are running a server.

No. Even if you don't run a 'server', if your box uses inetd for ANYTHING, xinetd will make your box more attack resiliant.


Why, exactly, is xinetd 'more secure' than inetd?

Xinetd has built in protection mechanisms against malicious flood-style attacks, inetd has none.


I know that other distros use xinetd, but I would have to laugh at the concept that they are 'more secure' than a well-thought out Slackware server or desktop/laptop.

They are probably less secure in most areas but, xinetd does offer you more protection.


...Pat has decided to stick with inetd instead of xinetd.

Pat is pretty much a wait and see kinda guy with Slackware. My guess is that he's waiting to see if xinetd is a fad or something.


Indeed, which is why I am asking for everyone's opinion regarding the subject.

Xinetd is a good idea to install. I recommend it.
 
  


Reply

Tags
xinetd


Thread Tools Search this Thread
Search this Thread:

Advanced Search

Posting Rules
You may not post new threads
You may not post replies
You may not post attachments
You may not edit your posts

BB code is On
Smilies are On
[IMG] code is Off
HTML code is Off


Similar Threads
Thread Thread Starter Forum Replies Last Post
xinetd cootetom Suse/Novell 5 02-20-2005 04:58 AM
who uses xinetd? Motown Linux - Distributions 0 07-07-2004 03:56 PM
xinetd uses service --> slackware uses ??? kntgtaid Slackware 1 06-06-2004 02:10 PM
installing hotway / hotwayd on Slackware -- xinetd?? pbhj Slackware 3 06-03-2004 08:52 PM
Xinetd dead --xinetd dead but pid file exists hillxy Linux - General 1 04-15-2004 02:10 PM


All times are GMT -5. The time now is 01:38 AM.

Main Menu
My LQ
Write for LQ
LinuxQuestions.org is looking for people interested in writing Editorials, Articles, Reviews, and more. If you'd like to contribute content, let us know.
Main Menu
Syndicate
RSS1  Latest Threads
RSS1  LQ News
Twitter: @linuxquestions
identi.ca: @linuxquestions
Facebook: linuxquestions Google+: linuxquestions
Open Source Consulting | Domain Registration