#
272461 |
|
02-Oct-2014 |
gjb |
Copy stable/10@r272459 to releng/10.1 as part of the 10.1-RELEASE process.
Approved by: re (implicit) Sponsored by: The FreeBSD Foundation |
#
256281 |
|
10-Oct-2013 |
gjb |
Copy head (r256279) to stable/10 as part of the 10.0-RELEASE cycle.
Approved by: re (implicit) Sponsored by: The FreeBSD Foundation
|
#
175254 |
|
12-Jan-2008 |
maxim |
o inetd(8) requires wait/nowait column in inetd.conf for ONC services as well.
PR: bin/119203 Submitted by: Peter Jeremy MFC atfer: 1 week
|
#
162305 |
|
14-Sep-2006 |
ru |
Removed T/TCP bits.
|
#
155318 |
|
04-Feb-2006 |
ceri |
Perform minor rewording and grammatical improvement. Add a missing Xr.
|
#
153885 |
|
30-Dec-2005 |
ceri |
inetd(8) requires that /etc/netconfig be present, and contain entries for each of udp and tcp (and their IPv6 equivalents when INET6 is enabled). Note that dependency here.
PR: docs/90435 Submitted by: Dmitry Kazarov <kazarov at mcm dot ru> Pointed out by: Daniel Gerzo <danger at rulez dot sk> MFC after: 8 days
|
#
147270 |
|
10-Jun-2005 |
nectar |
Remove rexecd(8), a server that implements a particularly insecure method of executing commands remotely. There are no rexec clients in the FreeBSD tree, and the client function rexec(3) is present only in libcompat. It has been documented as "obsolete" since 4.3BSD, and its use has been discouraged in the man page for over 10 years.
|
#
133249 |
|
07-Aug-2004 |
imp |
Per letter dated July 22, 1999 remove 3rd clause of Berkeley derived software (with permission of addtional copyright holders where appropriate)
|
#
131500 |
|
02-Jul-2004 |
ru |
Mechanically kill hard sentence breaks.
|
#
126407 |
|
29-Feb-2004 |
charnier |
Revert previous change. The effect of -w or -W option is described in another paragraph. Obtained from: David Malone <dwmalone@maths.tcd.ie>
|
#
126241 |
|
25-Feb-2004 |
charnier |
According to source code, under certain conditions, logging goes to the "auth" facility not "daemon". Submitted by: "Bill Richter (7X22KEY)" <richterb@binkley.foothill.net>
|
#
116050 |
|
08-Jun-2003 |
charnier |
The .Xr utility
|
#
101828 |
|
13-Aug-2002 |
ru |
mdoc(7) police: Removed redundant .Ns calls.
|
#
101474 |
|
07-Aug-2002 |
ume |
Add capability for limiting the maximum number of simultaneous invocations of each service from a single IP address.
Requested by: matusita Reviewed by: dwmalone Tested by: matusita on snapshots.jp.FreeBSD.org MFC after: 2 weeks
|
#
100127 |
|
15-Jul-2002 |
alfred |
add support for rpc IPv6 (rpc/udp/46 ...)
Submitted by: Jean-Luc Richier <Jean-Luc.Richier@imag.fr>
|
#
99968 |
|
14-Jul-2002 |
charnier |
The .Nm utility
|
#
94827 |
|
16-Apr-2002 |
dd |
Correct spacing.
|
#
87653 |
|
11-Dec-2001 |
sheldonh |
Fix a typo.
Reported by: Jurrien Koopmans <jjkoopmans@home.nl>
|
#
81622 |
|
14-Aug-2001 |
ru |
mdoc(7) police: s/BSD/.Bx/ where appropriate.
|
#
79755 |
|
15-Jul-2001 |
dd |
Remove whitespace at EOL.
|
#
79537 |
|
10-Jul-2001 |
ru |
mdoc(7) police: removed HISTORY info from the .Os call.
|
#
79454 |
|
09-Jul-2001 |
dd |
mdoc(7) police: remove extraneous .Pp before and/or after .Sh.
|
#
79288 |
|
05-Jul-2001 |
ru |
mdoc(7) police: fixed markup, sorted xrefs.
|
#
79159 |
|
03-Jul-2001 |
dd |
mdoc(7) police: fix spacing and punctuation issues.
|
#
78686 |
|
23-Jun-2001 |
dd |
Remove duplicate words.
|
#
78356 |
|
16-Jun-2001 |
dwmalone |
Give inetd the ability to manage unix domain sockets. Details of how to use this feature are in the man page. This is based on work by Lyndon Nerenberg.
(The only difficult part about this patch is the fact that you can't fchown a unix domain socket, which means the sockets must be put in a secure directory).
Reviewed by: dillon
|
#
77878 |
|
07-Jun-2001 |
sobomax |
Correct cross-reference: portmap.8 --> rpcbind.8
Submitted by: .Xr testing script
|
#
77684 |
|
04-Jun-2001 |
dwmalone |
This patch cleans up the ident stuff in inetd. The code which has been patched so many times it was a bit of a mess. There are style, code and man page cleanups. The following are the functional changes:
The RFC only permits the returning of 4 possible error codes, make sure we only return these (PR 27636).
Use MAXLOGNAME to determine the longest usernames.
Add a -i flag, which returns the uid instead of the username (this is from a PR 25787, which also contained alot of the cleanups in this patch).
PR: 25787, 27636 Partially Submitted by: Arne.Dag.Fidjestol@idi.ntnu.no Reviewed by: Arne.Dag.Fidjestol@idi.ntnu.no, green MFC after: 3 weeks
|
#
77230 |
|
26-May-2001 |
dwmalone |
Don't spell requester as requestor.
|
#
73233 |
|
28-Feb-2001 |
ru |
Eliminate mdocNG warnings caused by misplaced or extraneous macro calls.
|
#
71898 |
|
01-Feb-2001 |
ru |
mdoc(7) police: split punctuation characters + misc fixes.
|
#
71398 |
|
22-Jan-2001 |
dwmalone |
Don't mention /etc/protocols in inetd documentation or comments, as inetd doesn't actually use it.
PR: 24307 Submitted by: opentrax@email.com
|
#
70403 |
|
27-Dec-2000 |
ru |
Prepare for mdoc(7)NG.
|
#
69620 |
|
05-Dec-2000 |
dwmalone |
Add a -F option to the builtin ident service, which allows .fakeid files to contain the name of other valid users.
PR: 22837 Submitted by: Andreas Gerstenberg <andy@andy.de> Reviewed by: green Reviewed by: sheldonh
|
#
68965 |
|
20-Nov-2000 |
ru |
mdoc(7) police: use the new features of the Nm macro.
|
#
67881 |
|
29-Oct-2000 |
n_hibma |
Be explicit about the fact that you can only specify one IP address/hostname
|
#
64197 |
|
03-Aug-2000 |
dwmalone |
Explain "-c" option more exactly and state the default in the man page.
Add ability to run "inetd -R 0" to disable the default connection per minute limit of 256 connections. Document this in man page.
Don't use maxchild as a boolean - instead check if it is greater than zero.
Reviewed by: sheldonh Based on a patch by: Alexander Langer <alex@big.endian.de>
|
#
64196 |
|
03-Aug-2000 |
dwmalone |
specifer -> specifier
|
#
59646 |
|
26-Apr-2000 |
sheldonh |
Clarify the use of the auth service's -d option for specifying a fallback username.
Reviewed by: green
|
#
58712 |
|
27-Mar-2000 |
green |
Allow using "-d username" without "-r". Example: auth stream tcp nowait root internal auth -d "Only fools trust ident"
|
#
58468 |
|
22-Mar-2000 |
ru |
"can received" -> "can receive".
|
#
57652 |
|
01-Mar-2000 |
sheldonh |
Clarify the facility used for logging with and without the wrapping options.
PR: 17017 Submitted by: Doug Barton <Doug@gorean.org>
|
#
57630 |
|
29-Feb-2000 |
sheldonh |
Remove broken hard sentence breaks, which mess up the typeset output.
|
#
56731 |
|
28-Jan-2000 |
sheldonh |
Fix English, mdoc and layout of the previous commit, as requested by the committer (shin). While I don't have permission for this change from the inetd maintainer (des), I assume that shin has permission and I'm just fixing his contribution up for him.
Okay, I couldn't resist, I made some extra changes:
* Replace ".Tn FreeBSD" with .Fx * Make the illegal TCPMUX and IPSEC sections legal subsections of the IMPLEMENTATION NOTES section.
Requested by: shin
|
#
56590 |
|
25-Jan-2000 |
shin |
several tcp apps IPv6 update -inetd -rshd -rlogind -telnetd -rsh -rlogin
Reviewed by: freebsd-arch, cvs-committers Obtained from: KAME project
|
#
56482 |
|
23-Jan-2000 |
charnier |
Do not dot terminate sentences inside FILES section. Lowercase inside error messages.
|
#
56298 |
|
19-Jan-2000 |
green |
Implement -g and -d options in my ident code. The -g flag uses a random garbage value for the username (hex garbage, that is), and the -d flag provides a default username for fallback purposes if the user cannot be looked up. That is very useful for the case where inetd auth is running on a NAT box.
While I'm here updating the manpage, clean up an English error and a few small nits.
|
#
50479 |
|
27-Aug-1999 |
peter |
$Id$ -> $FreeBSD$
|
#
49058 |
|
24-Jul-1999 |
green |
Correct a groff error in macro usage ("foo : bar" becomes "``foo: bar''"). Document the auth -n flag.
|
#
49034 |
|
23-Jul-1999 |
sheldonh |
Document the -o and -t options to the internal auth service and give an example of their usage in the sample config. Merge the two examples for the green internal auth service.
This commit failed the first time around because Brian beat me to the punch on inetd.8 . I like my descriptions better and I'm pretty sure Brian won't mind.
|
#
49031 |
|
23-Jul-1999 |
green |
As per DES's prodding, document _all_ the arguments to inetd's auth service. This includes the -o "operating system" argument and the -t "timeout" argument.
|
#
48845 |
|
16-Jul-1999 |
sheldonh |
Document the new {auth,ident,tap} service and provide examples in the configuration file.
Requested by: green
|
#
48752 |
|
11-Jul-1999 |
green |
Fix ``:''.
PR: 12589
|
#
48697 |
|
09-Jul-1999 |
sheldonh |
Allow internal and external wrapping to be enabled independantly of each other. Instead of allowing the -w option to be specified twice, we now take -w (wrap external) and -W (wrap internal).
Discussed with: markm
|
#
48467 |
|
02-Jul-1999 |
sheldonh |
Allow service alias names from /etc/services to be used when specifying internal services in inetd.conf .
The inetd(8) manpage used to say that the official name of a service _must_ be used, yet inetd itself was hardcoded to used a service alias for the auth service, namely ident!
Rather than change inetd.conf and break existing configurations on next upgrade, we now allow service aliases as well as official names. This allows the software to work as expected and still support existing configurations.
This should not breaking existing wrapped configurations either and the inetd(8) manpage already states that it is the service name specified in inetd.conf that is used for calls to hosts_access(3).
PR: 11796 Reported by: Alex Charalabidis <alex@wnm.net> Approved by: des
|
#
48466 |
|
02-Jul-1999 |
sheldonh |
Clarify that the services name, as specified in inetd.conf, for an internal service should be used as the daemon name when constructing hosts_access(5) rules.
|
#
48383 |
|
30-Jun-1999 |
sheldonh |
Ommitted in previous commit message:
Submitted by: David Malone <dwmalone@maths.tcd.ie>
|
#
48382 |
|
30-Jun-1999 |
sheldonh |
Enable wrapping for dgram services and fix logging so that -l really does log all connections.
|
#
48287 |
|
27-Jun-1999 |
sheldonh |
Fix the SYNOPSIS to reflect that the -w option can be specified twice.
Requested by: obrien Approved by: mpp
|
#
48279 |
|
27-Jun-1999 |
sheldonh |
Add command-line option (-w), specified once to enable wrapping and twice to enable wrapping for internal wrapping as well. If the option is not specified wrapping is turned off so that inetd will behave exactly as it used to before TCP Wrappers was imported.
Change etc/defaults/rc.conf so as to encourage wrapping on new systems.
Clarify the use of TCP Wrappers in the IMPLEMENTATION NOTES of the manual page.
Approved by: jkh
|
#
48070 |
|
21-Jun-1999 |
sheldonh |
Use Dq mdoc tag for double-quoted words.
|
#
47972 |
|
17-Jun-1999 |
sheldonh |
Various fixes for inetd's TCP Wrappers support:
1) Handle forking and non-forking internal services correctly. Turn on wrapping for internal services because it works now. 2) Preserve server names for each service on HUP. 3) Honour hosts_options(5) severity option. 4) Add IMPLEMENTATION NOTES section to clarify TCP Wrappers usage and limitations.
This change may cause previously allowed builtin services (e.g. daytime) to be denied in existing configurations.
PR: 12097 Reviewed by: markm 1) Reported by: Pierre Beyssac <pb@fasterix.freenix.org> 2) Submitted by: Masachika ISHIZUKA <ishizuka@ish.org> 3) Submitted by: David Malone <dwmalone@maths.tcd.ie>
|
#
46232 |
|
01-May-1999 |
obrien |
MFS: sort reference list and embelish history.
|
#
45588 |
|
11-Apr-1999 |
markm |
Fix the "internal" wrapping as well as a nasty bug involving the daemon name vs the path. Also fix some warnings and improve the wrapper section of the man page.
Nice debugging work by: Sheldon Hearn
|
#
45089 |
|
28-Mar-1999 |
markm |
Now inetd(8) has direct support for tcp_wrappers! Not working at the moment is support for the internal serfvices, so these are not enabled. Volunteers welcome!
|
#
36853 |
|
10-Jun-1998 |
phk |
Spelling fixes.
PR: 6903 Reviewed by: phk Submitted by: Josh Gilliam <josh@quick.net>
|
#
36077 |
|
15-May-1998 |
pb |
Small typo in T/TCP patch ("speicfy" -> "specify").
|
#
36042 |
|
14-May-1998 |
guido |
On request of Garrett, ad a way to specify that a service should be reachable via T/TCP Reviewed by: Garrett Wollman
|
#
35172 |
|
13-Apr-1998 |
wollman |
Document the requirement for TCPMUX to also be enabled as an internal service if any external TCPMUX servers are desired.
PR: 826
|
#
33794 |
|
24-Feb-1998 |
pst |
Make maxchild and max child-per-minute default values configurable from the command line or Makefile.
|
#
30847 |
|
29-Oct-1997 |
dima |
Add possibility to specify maximum number of connections per minute for a given IP address. This should be very effective against DoS attacks.
|
#
30807 |
|
28-Oct-1997 |
ache |
Implement group part now, final syntax is: user[:group][/login-class]
|
#
30792 |
|
27-Oct-1997 |
ache |
Implement login classes sepcification as user[/loginclass]
By default inetd run things with the same limits as from /etc/rc (daemon class) to not break anything as in good old days.
|
#
29602 |
|
19-Sep-1997 |
charnier |
Use err(3).
|
#
22997 |
|
22-Feb-1997 |
peter |
Revert $FreeBSD$ to $Id$
|
#
21880 |
|
19-Jan-1997 |
wosch |
Sort cross references.
|
#
21673 |
|
14-Jan-1997 |
jkh |
Make the long-awaited change from $Id$ to $FreeBSD$
This will make a number of things easier in the future, as well as (finally!) avoiding the Id-smashing problem which has plagued developers for so long.
Boy, I'm glad we're not using sup anymore. This update would have been insane otherwise.
|
#
19618 |
|
10-Nov-1996 |
julian |
Reviewed by: Bill fenner Submitted by: Archie Cobbs (Archie@whistle.com)
Changes to allow inted to control the number of servers to start on each service. This is a defence against a denial of service attack in which the system is made unusable by an external party. It also allows the behaviour of small memory systems to be more accuratly predicted, by bounding the extent to which processes can multiply.
|
#
17482 |
|
09-Aug-1996 |
julian |
Reviewed by: various Submitted by: archie@whistle.com
changes to allow inetd to bind to a single interface for more complicated options see xinetd in ports.
Obtained from: whistle.com
|
#
13956 |
|
07-Feb-1996 |
wollman |
Call setsockopt(SO_PRIVSTATE) to renounce SS_PRIV on all the sockets we create. (Nothing being called from inetd should use it anyway, but you can never be too careful.)
Translate the man page back into -mdoc.
|
#
13744 |
|
30-Jan-1996 |
mpp |
Fix a bunch of spelling errors in a bunch of man pages.
|
#
11447 |
|
12-Oct-1995 |
wollman |
Record PID in /var/run/inetd.pid and document same.
|
#
11379 |
|
09-Oct-1995 |
dg |
Correct the "default rate" - it's 256/minute not 1000/minute.
|
#
5182 |
|
21-Dec-1994 |
wollman |
Disable UDP service looping attack.
|
#
2659 |
|
11-Sep-1994 |
csgr |
- increase TOOMANY, in line with 1.x - add logging option from 1.x
|
#
2657 |
|
11-Sep-1994 |
csgr |
Bring in handling of RPC services from 1.x (Guess who forgot to replace his inetd until today ;-)
|
#
1554 |
|
26-May-1994 |
rgrimes |
This commit was generated by cvs2svn to compensate for changes in r1553, which included commits to RCS files with non-trunk default branches.
|
#
1553 |
|
26-May-1994 |
rgrimes |
BSD 4.4 Lite usr.sbin Sources
|