On Tue, 21 Dec 1999, Boaz Rymland wrote:
> > if you want to do it real good: remove in.telnetd, rshd, talkd and
> > whatever from the machine. in fact I don't run inetd at all on any
> > machine anymore. and for remote terminal I only use ssh.
> >
>
> What about telneting from local machines? FTPing for file transfers
> etc'?
ssh from local machines is just fine, scp too, no need for FTP on the
outside, anonymous FTP pulling is an obsolete paradigm, use httpd. and
files on the LAN use Samba.
> More practically - if you "remark" the whole inetd.conf, is there still
> any danger as far as those remarked services started from inetd.conf?
inetd does stuff beyond the inetd.conf, I think the echo and chargen are
default in some of the versions and such. and anyway, if everything is
commented, why leave another process running at all?
yes, I am security minded, but I'm not too paranoid, I'm realistic.
> As for the ideas about this HOWTO - I think it should be a miniHOWTO as
> it just cant describe with great detail all the needed material - simply
> because the needed material is a big part of Linux networking... .
I do think it deserves a howto. it will include dialup, basic
firewalling, basic samba, basic masquarading, maybe squid hinted, XDMCP
for mixed platform networks like mine, etc... this is more than a simple
mini- howto.
> have a good and effective coverege of links to more detailed description
> of networking issues. The writing should be verified for conciseness and
> accuracy but also for clarity (well, everything should be written like
> that, shouldn't it? :) due to it's "digesty nature".
I don't have time to write one now, but I'll gladly check for coherency
and accuracy and send you a diff file if you do :-)
--
Ira Abramov ; whois:IA58 ; www.scso.com ; all around Linux enthusiast
"MSDOS didn't get as bad as it is overnight -- it took over ten years
of careful development."
(By [EMAIL PROTECTED])
=================================================================
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]
