Bug 21932

Summary: xinetd re-enables disabled services.
Product: [Retired] Red Hat Linux Reporter: Stephen Rasku <redhat>
Component: xinetdAssignee: Trond Eivind Glomsrxd <teg>
Status: CLOSED NOTABUG QA Contact: Brock Organ <borgan>
Severity: medium Docs Contact:
Priority: high    
Version: 7.0CC: msf
Target Milestone: ---Keywords: Security
Target Release: ---   
Hardware: i386   
OS: Linux   
Whiteboard:
Fixed In Version: Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of: Environment:
Last Closed: 2000-12-08 20:46:22 UTC Type: ---
Regression: --- Mount Type: ---
Documentation: --- CRM:
Verified Versions: Category: ---
oVirt Team: --- RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: --- Target Upstream Version:
Embargoed:

Description Stephen Rasku 2000-12-08 05:11:28 UTC 
I upgraded my system from 6.2 to 7.0.  The only services that I had enabled
in inetd.conf was time (I am not sure why).  When I upgraded, I ended up
with:
	finger
	linuxconf-web
	rexec
	rlogin
	rsh
	telnet
	tftp
	time

in /etc/xinetd.d

I was able to finger my machine and login via telnet and rlogin.  I tried
rsh and it gave me "Permission denied".  I didn't try anything else.

The install shouldn't enable services that were previously disabled.
Comment 1 Michael Fulbright 2000-12-08 20:35:21 UTC 
Assigning to xinetd owner.
Comment 2 Trond Eivind Glomsrxd 2000-12-08 21:52:48 UTC 
xinetd doesn't touch this... the reason they are enabled is because they shipped
with configuration files which turn them on. This has been fixed in our trees,
as they are now off by default.