| To: | Alexander Larsson <alexl@xxxxxxxxxx> |
|---|---|
| Subject: | Re: fam exploit? |
| From: | Michael Raymond <mraymond@xxxxxxx> |
| Date: | Tue, 30 Dec 2003 12:58:59 -0600 |
| Cc: | me <joe@xxxxxxxxxxxxxxxxxxxxxxx>, fam@xxxxxxxxxxx |
| In-reply-to: | <1071042724.1811.96.camel@xxxxxxxxxxxxxxxxxxxxx>; from alexl@xxxxxxxxxx on Wed, Dec 10, 2003 at 08:52:04AM +0100 |
| References: | <20031209203945.GU1408@xxxxxxxxxxxxxxxxxxxxxxx> <1071042724.1811.96.camel@xxxxxxxxxxxxxxxxxxxxx> |
| Sender: | fam-bounce@xxxxxxxxxxx |
| User-agent: | Mutt/1.2.5i |
Sorry for the late reply, I've been really busy with other things.
Would it make sense to change the FAM INSTALL file to include the xinetd
bind option you mention?
Thanks,
Michael
On Wed, Dec 10, 2003 at 08:52:04AM +0100, Alexander Larsson wrote:
> On Tue, 2003-12-09 at 21:39, Me wrote:
> >
> > The tcpd man page says it cannot wrap rpc/tcp services. The fam man
> > page says the Local-only mode does not work from inetd. So how do we
> > protect this daemon?
>
> The redhat fam has:
> bind = 127.0.0.1
> in the xinetd config.
>
> =-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=-=
> Alexander Larsson Red Hat, Inc
> alexl@xxxxxxxxxx alla@xxxxxxxxxxxxxx
> He's a jaded shark-wrestling boxer with a mysterious suitcase handcuffed to
> his arm. She's a virginal hypochondriac fairy princess from aristocratic
> European stock. They fight crime!
>
--
Michael A. Raymond Office: (651) 683-3434
Core OS Scheduling Group Real-Time Lead
|
| <Prev in Thread] | Current Thread | [Next in Thread> |
|---|---|---|
| ||
| Previous by Date: | Fam 2.7.0 crashing on FreeBSD/NFS, Ulrich Spoerlein |
|---|---|
| Next by Date: | Re: Determining imon or dnotify, Michael Raymond |
| Previous by Thread: | Re: fam exploit?, Alexander Larsson |
| Next by Thread: | FAM 2.6.9 Solaris port, Stefan Teleman |
| Indexes: | [Date] [Thread] [Top] [All Lists] |