Xinetd Uses global /etc/xinetd.conf file and per-service /etc/xinetd.d/* files. Allows much finer-grained control of services Allow services based on IP address, ala TCP Wrappers Allow services based on time Configurable logging syslog vs file pid / host / userid / exit time / duration Number of concurrent services Process limits (cpu, address space, etc) Supplimental groups Umask Banners on connect, success, or failure Defaults are inherited, can be overridden, supplemented, or abridged Services can be easily disabled with 'disable' directive
Copyright 2003, Bri Hatch of Onsight, Inc.
Presented at ISSA Puget Sound, 2003.
Presentation created using vim and MagicPoint.