Re: inetd(8): cmdif as builtin

To: Mouse <mouse%Rodents-Montreal.ORG@localhost>
Subject: Re: inetd(8): cmdif as builtin
From: Brett Lymn <blymn%internode.on.net@localhost>
Date: Tue, 13 Jun 2023 07:45:30 +0930

On Fri, Jun 09, 2023 at 08:47:10AM -0400, Mouse wrote:
> 
> In any case, the major issue I would have with it is the lack of
> authentication.  But that's so obvious that I assume you would be doing
> something like requiring a password - or doing it only for AF_LOCAL
> sockets and using LOCAL_PEEREID.  (This is pretty close to what most of
> my pidconn servers do - they use the pidconn analog of LOCAL_PEEREID to
> verify that the client is either root or the same UID the server is
> running as.)
> 

When this was done in last years GSoC it was a AF_LOCAL socket to
control inetd.  I am not sure that inetd having a configuration service
listening on the network is a really good idea - to me, it sounds
dangerous and I am dubious that there are many situations that require
remote configuration of inetd.

-- 
Brett Lymn
--
Sent from my NetBSD device.

"We are were wolves",
"You mean werewolves?",
"No we were wolves, now we are something else entirely",
"Oh"

Follow-Ups:
- Re: inetd(8): cmdif as builtin
  - From: Luke Mewburn
- Re: inetd(8): cmdif as builtin
  - From: Mouse

References:
- inetd(8): cmdif as builtin
  - From: tlaronde
- Re: inetd(8): cmdif as builtin
  - From: Mouse

Prev by Date: Re: inetd(8): cmdif as builtin
Next by Date: Re: inetd(8): cmdif as builtin
Previous by Thread: Re: inetd(8): cmdif as builtin
Next by Thread: Re: inetd(8): cmdif as builtin
Indexes:

Home | Main Index | Thread Index | Old Index