[svlug] Sniff, sniff, revisited
Nick Moffitt
nick at zork.net
Thu Aug 27 13:01:27 PDT 1998
[tcpd vs xinetd]
On Thu, 27 Aug 1998, Rick Moen wrote:
> On Thu, Aug 27, 1998 at 10:40:51AM -0700, J C Lawrence wrote:
>
> > Would you mind expounding on that comparison?
>
> I wouldn't mind, but my knowledge is too spotty, and my recall is
> too fallible. Nick? Care to chip in?
Jim Dennis pointed out that while xinetd does have a better
interface for logging data and locking things out, it's nothing you
couldn't already do with tcpd and the twist options of
hosts.{allow,deny} .
tcpd and the ordinary method of tcp wrappers, along with the
other support apps and daemons, has been extensively tested and
debugged over the last decade or so. xinetd is a relative newcomer,
and needs some time to mature and iron out all those old bugs and
security holes.
I've never played much with xinetd, and I've never done the
twist or script-running options of tcp wrappers, so I may be a little
foggy on some of the details of this comparison.
----
* Progress (n.): The process through which Usenet has evolved from
smart people in front of dumb terminals to dumb people in front of
smart terminals. -- obs at burnout.demon.co.uk (obscurity)
--
echo "unsubscribe svlug" | mail majordomo at svlug.org
^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^^ to unsubscribe
More information about the svlug
mailing list