Bug 1892 - Open Services.
Open Services.
Status: CLOSED CURRENTRELEASE
Product: Red Hat Linux
Classification: Retired
Component: netkit-base (Show other bugs)
6.0
i386 Linux
medium Severity medium
: ---
: ---
Assigned To: Jay Turner
: Security
Depends On:
Blocks:
  Show dependency treegraph
 
Reported: 1999-03-30 13:59 EST by Wil Harris
Modified: 2015-01-07 18:36 EST (History)
1 user (show)

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Environment:
Last Closed: 1999-03-30 15:32:22 EST
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
CRM:
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---


Attachments (Terms of Use)

  None (edit)
Description Wil Harris 1999-03-30 13:59:36 EST
Everything in the /etc/inetd.conf is open by default,
upgrade replaces any copies that have been edited to turn
off vunerable services(ie: imap) and other services that
could cause a compromise of security(rlogin, rshell,
finger). Perhaps the policy should be all services need to
be disabled by default, and force the user to enable them
either during the install, or by hand if they know what they
are and know they need them. It is a general rule, if you
dont know, dont use it. If the user knows they need an ftp
service then letting them turn it on would be better than a
user not knowing these services are on, and having to turn
them off would provide more in the lines of security for a
newly installed system than the current setup.
Comment 1 Preston Brown 1999-03-30 15:32:59 EST
when you upgrade netkit-base from now on, /etc/inetd.conf will not get
overwritten.  Instead, if you have edited /etc/inetd.conf, the "new"
inetd.conf will be written to /etc/inetd.conf.rpmnew.  You are then
free to add any entries that you need to if you wish, and any services
you have turned off will not be turned back on automatically.

Note You need to log in before you can comment on or make changes to this bug.