inetd.conf revision 106817
1153577Sjhb# $FreeBSD: head/etc/inetd.conf 106817 2002-11-12 17:31:12Z obrien $ 2153577Sjhb# 3153577Sjhb# Internet server configuration database 4153577Sjhb# 5153577Sjhb# Define *both* IPv4 and IPv6 entries for dual-stack support. 6153577Sjhb# To disable a service, comment it out by prefixing the line with '#'. 7153577Sjhb# To enable a service, remove the '#' at the beginning of the line. 8153577Sjhb# 9153577Sjhb#ftp stream tcp nowait root /usr/libexec/ftpd ftpd -l 10153577Sjhb#ftp stream tcp6 nowait root /usr/libexec/ftpd ftpd -l 11153577Sjhb#telnet stream tcp nowait root /usr/libexec/telnetd telnetd 12153577Sjhb#telnet stream tcp6 nowait root /usr/libexec/telnetd telnetd 13153577Sjhb#shell stream tcp nowait root /usr/libexec/rshd rshd 14153577Sjhb#shell stream tcp6 nowait root /usr/libexec/rshd rshd 15153577Sjhb#login stream tcp nowait root /usr/libexec/rlogind rlogind 16153577Sjhb#login stream tcp6 nowait root /usr/libexec/rlogind rlogind 17153577Sjhb#finger stream tcp nowait/3/10 nobody /usr/libexec/fingerd fingerd -s 18153577Sjhb#finger stream tcp6 nowait/3/10 nobody /usr/libexec/fingerd fingerd -s 19153577Sjhb#exec stream tcp nowait root /usr/libexec/rexecd rexecd 20153577Sjhb#nntp stream tcp nowait usenet /usr/libexec/nntpd nntpd 21153577Sjhb# 22153577Sjhb# run comsat as root to be able to print partial mailbox contents w/ biff, 23153577Sjhb# or use the safer tty:tty to just print that new mail has been received. 24153577Sjhb#comsat dgram udp wait tty:tty /usr/libexec/comsat comsat 25153577Sjhb# 26153577Sjhb# ntalk is required for the 'talk' utility to work correctly 27153577Sjhb#ntalk dgram udp wait tty:tty /usr/libexec/ntalkd ntalkd 28153577Sjhb#tftp dgram udp wait root /usr/libexec/tftpd tftpd -s /tftpboot 29153577Sjhb#tftp dgram udp6 wait root /usr/libexec/tftpd tftpd -s /tftpboot 30153577Sjhb#bootps dgram udp wait root /usr/libexec/bootpd bootpd 31153577Sjhb# 32153577Sjhb# "Small servers" -- used to be standard on, but we're more conservative 33153577Sjhb# about things due to Internet security concerns. Only turn on what you 34153577Sjhb# need. 35153577Sjhb# 36153577Sjhb#daytime stream tcp nowait root internal 37153577Sjhb#daytime stream tcp6 nowait root internal 38153577Sjhb#daytime dgram udp wait root internal 39153577Sjhb#daytime dgram udp6 wait root internal 40153577Sjhb#time stream tcp nowait root internal 41153577Sjhb#time stream tcp6 nowait root internal 42153577Sjhb#time dgram udp wait root internal 43153577Sjhb#time dgram udp6 wait root internal 44153577Sjhb#echo stream tcp nowait root internal 45189373Sjhb#echo dgram udp6 wait root internal 46198251Sjkim#echo dgram udp wait root internal 47189373Sjhb#echo stream tcp6 nowait root internal 48153577Sjhb#discard stream tcp nowait root internal 49254882Sdumbbell#discard stream tcp6 nowait root internal 50254882Sdumbbell#discard dgram udp wait root internal 51254882Sdumbbell#discard dgram udp6 wait root internal 52254882Sdumbbell#chargen stream tcp nowait root internal 53254882Sdumbbell#chargen stream tcp6 nowait root internal 54153577Sjhb#chargen dgram udp wait root internal 55153577Sjhb#chargen dgram udp6 wait root internal 56153577Sjhb# 57189373Sjhb# Kerberos authenticated services 58189373Sjhb# 59189373Sjhb#klogin stream tcp nowait root /usr/libexec/rlogind rlogind -k 60189373Sjhb#eklogin stream tcp nowait root /usr/libexec/rlogind rlogind -k -x 61189373Sjhb#kshell stream tcp nowait root /usr/libexec/rshd rshd -k 62183095Sjhb#kip stream tcp nowait root /usr/libexec/kipd kipd 63183095Sjhb# 64249315Sjhb# CVS servers - for master CVS repositories only! You must set the 65249315Sjhb# --allow-root path correctly or you open a trivial to exploit but 66183095Sjhb# deadly security hole. 67183095Sjhb# 68198251Sjkim#cvspserver stream tcp nowait root /usr/bin/cvs cvs --allow-root=/your/cvsroot/here pserver 69198251Sjkim#cvspserver stream tcp nowait root /usr/bin/cvs cvs --allow-root=/your/cvsroot/here kserver 70198251Sjkim# 71198251Sjkim# RPC based services (you MUST have rpcbind running to use these) 72198964Sjkim# 73198251Sjkim#rstatd/1-3 dgram rpc/udp wait root /usr/libexec/rpc.rstatd rpc.rstatd 74198251Sjkim#rusersd/1-2 dgram rpc/udp wait root /usr/libexec/rpc.rusersd rpc.rusersd 75254882Sdumbbell#walld/1 dgram rpc/udp wait root /usr/libexec/rpc.rwalld rpc.rwalld 76254882Sdumbbell#pcnfsd/1-2 dgram rpc/udp wait root /usr/libexec/rpc.pcnfsd rpc.pcnfsd 77254882Sdumbbell#rquotad/1 dgram rpc/udp wait root /usr/libexec/rpc.rquotad rpc.rquotad 78254882Sdumbbell#sprayd/1 dgram rpc/udp wait root /usr/libexec/rpc.sprayd rpc.sprayd 79254882Sdumbbell# 80254882Sdumbbell# example entry for the optional pop3 server 81254882Sdumbbell# 82254882Sdumbbell#pop3 stream tcp nowait root /usr/local/libexec/popper popper 83254882Sdumbbell# 84254882Sdumbbell# example entry for the optional imap4 server 85254882Sdumbbell# 86254882Sdumbbell#imap4 stream tcp nowait root /usr/local/libexec/imapd imapd 87254882Sdumbbell# 88254882Sdumbbell# example entry for the optional uucpd server 89254882Sdumbbell#uucpd stream tcp nowait root /usr/local/libexec/uucpd uucpd 90254882Sdumbbell# 91254882Sdumbbell# Return error for all "ident" requests 92254882Sdumbbell# 93254882Sdumbbell#auth stream tcp nowait root internal 94254882Sdumbbell#auth stream tcp6 nowait root internal 95254882Sdumbbell# 96254882Sdumbbell# Provide internally a real "ident" service which provides ~/.fakeid support, 97254882Sdumbbell# provides ~/.noident support, reports UNKNOWN as the operating system type 98254882Sdumbbell# and times out after 30 seconds. 99254882Sdumbbell# 100254882Sdumbbell#auth stream tcp nowait root internal auth -r -f -n -o UNKNOWN -t 30 101254882Sdumbbell#auth stream tcp6 nowait root internal auth -r -f -n -o UNKNOWN -t 30 102254882Sdumbbell# 103254882Sdumbbell# Example entry for an external ident server 104254882Sdumbbell# 105254882Sdumbbell#auth stream tcp wait root /usr/local/sbin/identd identd -w -t120 106254882Sdumbbell# 107254882Sdumbbell# Example entry for the optional qmail MTA 108254882Sdumbbell# NOTE: This is no longer the correct way to handle incoming SMTP 109254882Sdumbbell# connections for qmail. Use tcpserver (http://cr.yp.to/ucspi-tcp.html) 110254882Sdumbbell# instead. 111254882Sdumbbell# 112254882Sdumbbell#smtp stream tcp nowait qmaild /var/qmail/bin/tcp-env tcp-env /var/qmail/bin/qmail-smtpd 113254882Sdumbbell# 114254882Sdumbbell# Enable the following two entries to enable samba startup from inetd 115254882Sdumbbell# (from the Samba documentation). Enable the third entry to enable the swat 116254882Sdumbbell# samba configuration tool. 117254882Sdumbbell# 118254882Sdumbbell#netbios-ssn stream tcp nowait root /usr/local/sbin/smbd smbd 119254882Sdumbbell#netbios-ns dgram udp wait root /usr/local/sbin/nmbd nmbd 120254882Sdumbbell#swat stream tcp nowait/400 root /usr/local/sbin/swat swat 121254882Sdumbbell