inetd.conf revision 206039
1219019Sgabor# $FreeBSD: head/etc/inetd.conf 206039 2010-04-01 13:13:09Z des $ 2219019Sgabor# 3219019Sgabor# Internet server configuration database 4219019Sgabor# 5219019Sgabor# Define *both* IPv4 and IPv6 entries for dual-stack support. 6219019Sgabor# To disable a service, comment it out by prefixing the line with '#'. 7219019Sgabor# To enable a service, remove the '#' at the beginning of the line. 8219019Sgabor# 9219019Sgabor#ftp stream tcp nowait root /usr/libexec/ftpd ftpd -l 10219019Sgabor#ftp stream tcp6 nowait root /usr/libexec/ftpd ftpd -l 11219019Sgabor#ssh stream tcp nowait root /usr/sbin/sshd sshd -i -4 12219019Sgabor#ssh stream tcp6 nowait root /usr/sbin/sshd sshd -i -6 13219019Sgabor#telnet stream tcp nowait root /usr/libexec/telnetd telnetd 14219019Sgabor#telnet stream tcp6 nowait root /usr/libexec/telnetd telnetd 15219019Sgabor#shell stream tcp nowait root /usr/libexec/rshd rshd 16219019Sgabor#shell stream tcp6 nowait root /usr/libexec/rshd rshd 17219019Sgabor#login stream tcp nowait root /usr/libexec/rlogind rlogind 18219019Sgabor#login stream tcp6 nowait root /usr/libexec/rlogind rlogind 19219019Sgabor#finger stream tcp nowait/3/10 nobody /usr/libexec/fingerd fingerd -k -s 20219019Sgabor#finger stream tcp6 nowait/3/10 nobody /usr/libexec/fingerd fingerd -k -s 21219019Sgabor# 22219019Sgabor# run comsat as root to be able to print partial mailbox contents w/ biff, 23219019Sgabor# or use the safer tty:tty to just print that new mail has been received. 24219019Sgabor#comsat dgram udp wait tty:tty /usr/libexec/comsat comsat 25219019Sgabor# 26219019Sgabor# ntalk is required for the 'talk' utility to work correctly 27219019Sgabor#ntalk dgram udp wait tty:tty /usr/libexec/ntalkd ntalkd 28219019Sgabor#tftp dgram udp wait root /usr/libexec/tftpd tftpd -l -s /tftpboot 29219019Sgabor#tftp dgram udp6 wait root /usr/libexec/tftpd tftpd -l -s /tftpboot 30219019Sgabor#bootps dgram udp wait root /usr/libexec/bootpd bootpd 31219019Sgabor# 32219019Sgabor# "Small servers" -- used to be standard on, but we're more conservative 33219019Sgabor# about things due to Internet security concerns. Only turn on what you 34219019Sgabor# need. 35219019Sgabor# 36219019Sgabor#daytime stream tcp nowait root internal 37219019Sgabor#daytime stream tcp6 nowait root internal 38219019Sgabor#daytime dgram udp wait root internal 39219019Sgabor#daytime dgram udp6 wait root internal 40219019Sgabor#time stream tcp nowait root internal 41219019Sgabor#time stream tcp6 nowait root internal 42219019Sgabor#time dgram udp wait root internal 43219019Sgabor#time dgram udp6 wait root internal 44254273Speter#echo stream tcp nowait root internal 45254273Speter#echo stream tcp6 nowait root internal 46254273Speter#echo dgram udp wait root internal 47254273Speter#echo dgram udp6 wait root internal 48254273Speter#discard stream tcp nowait root internal 49254273Speter#discard stream tcp6 nowait root internal 50254273Speter#discard dgram udp wait root internal 51219019Sgabor#discard dgram udp6 wait root internal 52219019Sgabor#chargen stream tcp nowait root internal 53219019Sgabor#chargen stream tcp6 nowait root internal 54219019Sgabor#chargen dgram udp wait root internal 55219019Sgabor#chargen dgram udp6 wait root internal 56254273Speter# 57254273Speter# CVS servers - for master CVS repositories only! You must set the 58254273Speter# --allow-root path correctly or you open a trivial to exploit but 59254273Speter# deadly security hole. 60254273Speter# 61219019Sgabor#cvspserver stream tcp nowait root /usr/bin/cvs cvs --allow-root=/your/cvsroot/here pserver 62219019Sgabor#cvspserver stream tcp nowait root /usr/bin/cvs cvs --allow-root=/your/cvsroot/here kserver 63219019Sgabor# 64219019Sgabor# RPC based services (you MUST have rpcbind running to use these) 65219019Sgabor# 66252547Speter#rstatd/1-3 dgram rpc/udp wait root /usr/libexec/rpc.rstatd rpc.rstatd 67219019Sgabor#rusersd/1-2 dgram rpc/udp wait root /usr/libexec/rpc.rusersd rpc.rusersd 68219019Sgabor#walld/1 dgram rpc/udp wait root /usr/libexec/rpc.rwalld rpc.rwalld 69219019Sgabor#pcnfsd/1-2 dgram rpc/udp wait root /usr/local/libexec/rpc.pcnfsd rpc.pcnfsd 70219019Sgabor#rquotad/1 dgram rpc/udp wait root /usr/libexec/rpc.rquotad rpc.rquotad 71219019Sgabor#sprayd/1 dgram rpc/udp wait root /usr/libexec/rpc.sprayd rpc.sprayd 72219019Sgabor# 73254273Speter# example entry for the optional pop3 server 74254273Speter# 75254273Speter#pop3 stream tcp nowait root /usr/local/libexec/popper popper 76254273Speter# 77254273Speter# example entry for the optional imap4 server 78254273Speter# 79219019Sgabor#imap4 stream tcp nowait root /usr/local/libexec/imapd imapd 80219019Sgabor# 81254273Speter# example entry for the optional nntp server 82254273Speter# 83219019Sgabor#nntp stream tcp nowait news /usr/local/libexec/nntpd nntpd 84254273Speter# 85254273Speter# example entry for the optional uucpd server 86254273Speter# 87254273Speter#uucpd stream tcp nowait root /usr/local/libexec/uucpd uucpd 88254273Speter# 89219019Sgabor# Return error for all "ident" requests 90219019Sgabor# 91219019Sgabor#auth stream tcp nowait root internal 92219019Sgabor#auth stream tcp6 nowait root internal 93219019Sgabor# 94254273Speter# Provide internally a real "ident" service which provides ~/.fakeid support, 95219019Sgabor# provides ~/.noident support, reports UNKNOWN as the operating system type 96219019Sgabor# and times out after 30 seconds. 97219019Sgabor# 98219019Sgabor#auth stream tcp nowait root internal auth -r -f -n -o UNKNOWN -t 30 99219019Sgabor#auth stream tcp6 nowait root internal auth -r -f -n -o UNKNOWN -t 30 100219019Sgabor# 101219019Sgabor# Example entry for an external ident server 102219019Sgabor# 103219019Sgabor#auth stream tcp wait root /usr/local/sbin/identd identd -w -t120 104219019Sgabor# 105219019Sgabor# Example entry for the optional qmail MTA 106219019Sgabor# NOTE: This is no longer the correct way to handle incoming SMTP 107219019Sgabor# connections for qmail. Use tcpserver (http://cr.yp.to/ucspi-tcp.html) 108219019Sgabor# instead. 109219019Sgabor# 110219019Sgabor#smtp stream tcp nowait qmaild /var/qmail/bin/tcp-env tcp-env /var/qmail/bin/qmail-smtpd 111219019Sgabor# 112219019Sgabor# Enable the following two entries to enable samba startup from inetd 113219019Sgabor# (from the Samba documentation). Enable the third entry to enable the swat 114219019Sgabor# samba configuration tool. 115219019Sgabor# 116219019Sgabor#netbios-ssn stream tcp nowait root /usr/local/sbin/smbd smbd 117219019Sgabor#netbios-ns dgram udp wait root /usr/local/sbin/nmbd nmbd 118219019Sgabor#swat stream tcp nowait/400 root /usr/local/sbin/swat swat 119219019Sgabor