[oclug] 1i0n crack
sandine at math.unm.edu
Tue Apr 24 18:49:13 EDT 2001
On Tue, Apr 24, 2001 at 10:25:50PM +0000, Tom Goulet wrote:
> So there is basically no security difference between running an
> application from within inetd and from without.
I think it's easier to control who has the opportunity to
connect by calling daemons with xinetd. e.g. I only allow
ssh into my box from a certain subnet - connection attempts
from any IPs outside of that network are immediately refused
by xinetd. This is set up in a configuration file particular
to sshd. I suppose this could be done with hosts.allow, too, no?
xinetd seems more flexible to me.
More information about the OCLUG