NetBSD-Bugs archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

bin/40340: inetd does not log IP address of remote client



>Number:         40340
>Category:       bin
>Synopsis:       inetd does not log IP address of remote client
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    bin-bug-people
>State:          open
>Class:          change-request
>Submitter-Id:   net
>Arrival-Date:   Wed Jan 07 19:05:00 +0000 2009
>Originator:     Ed Ravin
>Release:        5.0
>Organization:
PANIX Public Access Networks
>Environment:
NetBSD panix5.panix.com 5.0_BETA NetBSD 5.0_BETA (PANIX-XEN3U-USER-pae) #1: Thu 
Nov 13 17:26:16 EST 2008  
root%juggler.panix.com@localhost:/misc1/obj/misc2/devel/netbsd/5-beta/src/sys/arch/i386/compile/PANIX-XEN3U-USER-pae
 i386

>Description:
inetd does not log the IP address of the remote client making the connection, 
only the hostname:

Jan  1 13:00:04 logsources@panix5 inetd[740]: connection from panix1.panix.com, 
service finger (tcp)

This is insufficient for security review, since a day later (or even an hour 
later) the lookup of a hostname could have changed.
>How-To-Repeat:

>Fix:
add the IP address in [ ] brackets as most programs do.



Home | Main Index | Thread Index | Old Index