>Number:         18960
>Category:       bin
>Synopsis:       inetd doesn't use tcpwrappers for UDP services and it's not documented
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    bin-bug-people
>State:          open
>Class:          doc-bug
>Submitter-Id:   net
>Arrival-Date:   Thu Nov 07 02:52:00 PST 2002
>Closed-Date:
>Last-Modified:
>Originator:     Pavel Cahyna
>Release:        1.5.3
>Organization:
>Environment:
NetBSD k1.kanal.ucw.cz 1.5.3 NetBSD 1.5.3 (EISA) #2: Mon Aug 12 01:19:22 CEST 2002     root@k1:/usr/src/sys/arch/i386/compile/EISA i386
>Description:
man page for inetd(8) in section "libwrap" implies that inetd is a complete tcpd replacement. That's not true, because the access control functionality does not work for UDP services. Same for hosts_access(5).
>How-To-Repeat:
put ALL: ALL in /etc/hosts.deny. Uncomment ntalkd line in /etc/inetd.conf and send a HUP to the inetd process. Now, every host can connect to ntalkd   
and the connections are not logged.

>Fix:
Please mention this explicitely in relevant manpages. Alternatively, tcpd   
could be provided to replace the missing functionality or this feature implemented in inetd.

>Release-Note:
>Audit-Trail:
>Unformatted: