Right - what Andreas said in his reply. More generalized answer:
For FTP and Telnet, at least, the monitor daemons (which might be
implemented under inetd/jinetd instead of as individual processes) are only
for the server/incoming services, and are not required for client/outbound
sessions, firewall and router settings for the related port numbers
notwithstanding.
-dtd
Robert Mills <[log in to unmask]>@RAVEN.UTC.EDU> on
04/05/2002 07:04:26 AM
Please respond to Robert Mills <[log in to unmask]>
Sent by: HP-3000 Systems Discussion <[log in to unmask]>
To: [log in to unmask]
cc:
Subject: [HP3000-L] Internet Services
Environment: 979/200 running MPE/iX 6.5 + all reactive patches.
Our INETDCNF currently looks as follows:
echo stream tcp nowait MANAGER.SYS internal
echo dgram udp nowait MANAGER.SYS internal
daytime stream tcp nowait MANAGER.SYS internal
daytime dgram udp nowait MANAGER.SYS internal
time stream tcp nowait MANAGER.SYS internal
time dgram udp nowait MANAGER.SYS internal
discard stream tcp nowait MANAGER.SYS internal
discard dgram udp nowait MANAGER.SYS internal
chargen stream tcp nowait MANAGER.SYS internal
chargen dgram udp nowait MANAGER.SYS internal
telnet stream tcp nowait MANAGER.SYS internal
tftp dgram udp wait USER.TFTP /SYS/NET/TFTPD tftpd
swat stream tcp nowait.400 MGR.SAMBA /usr/local/samba/bin/swat swat
-a
ftp stream tcp nowait MANAGER.SYS /SYS/ARPA/FTPSRVR ftpsrvr
My questions are:
1) Would removal of the 'ftp' entry ONLY prevent inbound ftp access OR
would
it have additional side-effects?
2) Would removal of the 'telnet' entry ONLY prevent inbound telnet access
OR
would it also prevent outbound telnet?
3) As we don't use bootp then is the 'tftp' entry required?
regards,
*****************************
Robert W.Mills, Systems Development Manager, Windsong Services
Electron House, Cray Avenue, St. Mary Cray, Kent BR5 3PN, ENGLAND
Tel: +44 (0)1689.870622 x 3005 Fax: +44 (0)1689 899026
[log in to unmask]
********************************
The thoughts, comments, and opinions expressed herein are mine.
They do not reflect those of my employer, nor anyone else.
********************************
***Confidentiality Notice: This e-mail message, including any attachments,
is for the sole use of the intended recipients and may contain confidential
and privileged information. Any unauthorized review, use, disclosure or
distribution is prohibited. If you are not the intended recipient, please
contact the sender by reply e-mail and destroy all copies of the original
message.
* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
* To join/leave the list, search archives, change list settings, *
* etc., please visit http://raven.utc.edu/archives/hp3000-l.html *
|