From fbdfc4e2e3b7fb2c66a261112e376f1490d500c2 Mon Sep 17 00:00:00 2001 From: frank Date: Sun, 15 Jan 2012 23:34:21 +0100 Subject: [PATCH] committing changes in /etc after emerge run Package changes: +sys-apps/xinetd-2.3.14 --- .etckeeper | 15 +++++++++ conf.d/xinetd | 3 ++ init.d/xinetd | 33 +++++++++++++++++++ xinetd.conf | 50 +++++++++++++++++++++++++++++ xinetd.d/chargen-dgram | 67 +++++++++++++++++++++++++++++++++++++++ xinetd.d/chargen-stream | 67 +++++++++++++++++++++++++++++++++++++++ xinetd.d/daytime-dgram | 67 +++++++++++++++++++++++++++++++++++++++ xinetd.d/daytime-stream | 67 +++++++++++++++++++++++++++++++++++++++ xinetd.d/discard-dgram | 67 +++++++++++++++++++++++++++++++++++++++ xinetd.d/discard-stream | 67 +++++++++++++++++++++++++++++++++++++++ xinetd.d/echo-dgram | 67 +++++++++++++++++++++++++++++++++++++++ xinetd.d/echo-stream | 67 +++++++++++++++++++++++++++++++++++++++ xinetd.d/ftp-sensor | 70 +++++++++++++++++++++++++++++++++++++++++ xinetd.d/tcpmux-server | 68 +++++++++++++++++++++++++++++++++++++++ xinetd.d/time-dgram | 67 +++++++++++++++++++++++++++++++++++++++ xinetd.d/time-stream | 67 +++++++++++++++++++++++++++++++++++++++ 16 files changed, 909 insertions(+) create mode 100644 conf.d/xinetd create mode 100755 init.d/xinetd create mode 100644 xinetd.conf create mode 100644 xinetd.d/chargen-dgram create mode 100644 xinetd.d/chargen-stream create mode 100644 xinetd.d/daytime-dgram create mode 100644 xinetd.d/daytime-stream create mode 100644 xinetd.d/discard-dgram create mode 100644 xinetd.d/discard-stream create mode 100644 xinetd.d/echo-dgram create mode 100644 xinetd.d/echo-stream create mode 100644 xinetd.d/ftp-sensor create mode 100644 xinetd.d/tcpmux-server create mode 100644 xinetd.d/time-dgram create mode 100644 xinetd.d/time-stream diff --git a/.etckeeper b/.etckeeper index 0a4d00fe..c747a500 100755 --- a/.etckeeper +++ b/.etckeeper @@ -54,6 +54,7 @@ maybe chmod 0644 './conf.d/svnserve' maybe chmod 0644 './conf.d/syslog-ng' maybe chmod 0644 './conf.d/udev' maybe chmod 0644 './conf.d/urandom' +maybe chmod 0644 './conf.d/xinetd' maybe chmod 0700 './config-archive' maybe chmod 0755 './config-archive/etc' maybe chmod 0644 './config-archive/etc/man.conf' @@ -228,6 +229,7 @@ maybe chmod 0755 './init.d/udev-postmount' maybe chmod 0755 './init.d/ulogd' maybe chmod 0755 './init.d/urandom' maybe chmod 0755 './init.d/vixie-cron' +maybe chmod 0755 './init.d/xinetd' maybe chmod 0644 './inittab' maybe chmod 0644 './inputrc' maybe chmod 0755 './iproute2' @@ -465,9 +467,22 @@ maybe chmod 0755 './vim' maybe chmod 0644 './vim/vimrc' maybe chmod 0644 './vim/vimrc.local' maybe chmod 0644 './wgetrc' +maybe chmod 0644 './xinetd.conf' maybe chmod 0755 './xinetd.d' +maybe chmod 0644 './xinetd.d/chargen-dgram' +maybe chmod 0644 './xinetd.d/chargen-stream' maybe chmod 0644 './xinetd.d/cvspserver' +maybe chmod 0644 './xinetd.d/daytime-dgram' +maybe chmod 0644 './xinetd.d/daytime-stream' +maybe chmod 0644 './xinetd.d/discard-dgram' +maybe chmod 0644 './xinetd.d/discard-stream' +maybe chmod 0644 './xinetd.d/echo-dgram' +maybe chmod 0644 './xinetd.d/echo-stream' +maybe chmod 0644 './xinetd.d/ftp-sensor' maybe chmod 0644 './xinetd.d/rsyncd' maybe chmod 0644 './xinetd.d/svnserve' +maybe chmod 0644 './xinetd.d/tcpmux-server' +maybe chmod 0644 './xinetd.d/time-dgram' +maybe chmod 0644 './xinetd.d/time-stream' maybe chmod 0755 './xml' maybe chmod 0644 './xml/catalog' diff --git a/conf.d/xinetd b/conf.d/xinetd new file mode 100644 index 00000000..ae211f3d --- /dev/null +++ b/conf.d/xinetd @@ -0,0 +1,3 @@ +# /etc/conf.d/xinetd: config file for /etc/init.d/xinetd + +XINETD_OPTS="-stayalive -reuse" diff --git a/init.d/xinetd b/init.d/xinetd new file mode 100755 index 00000000..2f90775c --- /dev/null +++ b/init.d/xinetd @@ -0,0 +1,33 @@ +#!/sbin/runscript +# Copyright 1999-2011 Gentoo Foundation +# Distributed under the terms of the GNU General Public License v2 +# $Header: /var/cvsroot/gentoo-x86/sys-apps/xinetd/files/xinetd.rc6,v 1.24 2011/10/11 01:26:08 vapier Exp $ + +extra_started_commands="reload dump check" + +depend() { + use net +} + +start() { + ebegin "Starting xinetd" + start-stop-daemon --start --exec /usr/sbin/xinetd -- \ + -pidfile /var/run/xinetd.pid ${XINETD_OPTS} + eend $? +} + +stop() { + ebegin "Stopping xinetd" + start-stop-daemon --stop --quiet --pidfile /var/run/xinetd.pid + eend $? +} + +do_sig() { + local sig=$1 ; shift + ebegin "$*" + start-stop-daemon --signal ${sig} --pidfile /var/run/xinetd.pid + eend $? +} +reload() { do_sig HUP "Reloading configuration" ; } +dump() { do_sig USR1 "Dumping configuration" ; } +check() { do_sig IOT "Performing Consistency Check" ; } diff --git a/xinetd.conf b/xinetd.conf new file mode 100644 index 00000000..75ae2d71 --- /dev/null +++ b/xinetd.conf @@ -0,0 +1,50 @@ +# +# This is the master xinetd configuration file. Settings in the +# default section will be inherited by all service configurations +# unless explicitly overridden in the service configuration. See +# xinetd.conf in the man pages for a more detailed explanation of +# these attributes. + +defaults +{ +# The next two items are intended to be a quick access place to +# temporarily enable or disable services. +# +# enabled = +# disabled = + +# Define general logging characteristics. + log_type = SYSLOG daemon info + log_on_failure = HOST + log_on_success = PID HOST DURATION EXIT + +# Define access restriction defaults +# +# no_access = + only_from = localhost +# max_load = 0 + cps = 50 10 + instances = 50 + per_source = 10 + +# Address and networking defaults +# +# bind = +# mdns = yes + v6only = no + +# setup environmental attributes +# +# passenv = + groups = yes + umask = 002 + +# Generally, banners are not used. This sets up their global defaults +# +# banner = +# banner_fail = +# banner_success = +} + +includedir /etc/xinetd.d + diff --git a/xinetd.d/chargen-dgram b/xinetd.d/chargen-dgram new file mode 100644 index 00000000..e3a604ac --- /dev/null +++ b/xinetd.d/chargen-dgram @@ -0,0 +1,67 @@ +# This is the configuration for the udp/dgram chargen service. + +service chargen +{ +# This is for quick on or off of the service + disable = yes + +# The next attributes are mandatory for all services + id = chargen-dgram + type = INTERNAL + wait = yes + socket_type = dgram +# protocol = socket type is usually enough + +# External services must fill out the following +# user = +# group = +# server = +# server_args = + +# External services not listed in /etc/services must fill out the next one +# port = + +# RPC based services must fill out these +# rpc_version = +# rpc_number = + +# Logging options +# log_type = +# log_on_success = +# log_on_failure = + +# Networking options +# flags = +# bind = +# redirect = +# v6only = + +# Access restrictions +# only_from = +# no_access = +# access_times = +# cps = 50 10 +# instances = UNLIMITED +# per_source = UNLIMITED +# max_load = 0 +# deny_time = 120 +# mdns = yes + +# Environmental options +# env = +# passenv = +# nice = 0 +# umask = 022 +# groups = yes +# rlimit_as = +# rlimit_cpu = +# rlimit_data = +# rlimit_rss = +# rlimit_stack = + +# Banner options. (Banners aren't normally used) +# banner = +# banner_success = +# banner_fail = +} + diff --git a/xinetd.d/chargen-stream b/xinetd.d/chargen-stream new file mode 100644 index 00000000..545cec9c --- /dev/null +++ b/xinetd.d/chargen-stream @@ -0,0 +1,67 @@ +# This is the configuration for the tcp/stream chargen service. + +service chargen +{ +# This is for quick on or off of the service + disable = yes + +# The next attributes are mandatory for all services + id = chargen-stream + type = INTERNAL + wait = no + socket_type = stream +# protocol = socket type is usually enough + +# External services must fill out the following +# user = +# group = +# server = +# server_args = + +# External services not listed in /etc/services must fill out the next one +# port = + +# RPC based services must fill out these +# rpc_version = +# rpc_number = + +# Logging options +# log_type = +# log_on_success = +# log_on_failure = + +# Networking options +# flags = +# bind = +# redirect = +# v6only = + +# Access restrictions +# only_from = +# no_access = +# access_times = +# cps = 50 10 +# instances = UNLIMITED +# per_source = UNLIMITED +# max_load = 0 +# deny_time = 120 +# mdns = yes + +# Environmental options +# env = +# passenv = +# nice = 0 +# umask = 022 +# groups = yes +# rlimit_as = +# rlimit_cpu = +# rlimit_data = +# rlimit_rss = +# rlimit_stack = + +# Banner options. (Banners aren't normally used) +# banner = +# banner_success = +# banner_fail = +} + diff --git a/xinetd.d/daytime-dgram b/xinetd.d/daytime-dgram new file mode 100644 index 00000000..a0d83b16 --- /dev/null +++ b/xinetd.d/daytime-dgram @@ -0,0 +1,67 @@ +# This is the configuration for the udp/dgram daytime service. + +service daytime +{ +# This is for quick on or off of the service + disable = yes + +# The next attributes are mandatory for all services + id = daytime-dgram + type = INTERNAL + wait = yes + socket_type = dgram +# protocol = socket type is usually enough + +# External services must fill out the following +# user = +# group = +# server = +# server_args = + +# External services not listed in /etc/services must fill out the next one +# port = + +# RPC based services must fill out these +# rpc_version = +# rpc_number = + +# Logging options +# log_type = +# log_on_success = +# log_on_failure = + +# Networking options +# flags = +# bind = +# redirect = +# v6only = + +# Access restrictions +# only_from = +# no_access = +# access_times = +# cps = 50 10 +# instances = UNLIMITED +# per_source = UNLIMITED +# max_load = 0 +# deny_time = 120 +# mdns = yes + +# Environmental options +# env = +# passenv = +# nice = 0 +# umask = 022 +# groups = yes +# rlimit_as = +# rlimit_cpu = +# rlimit_data = +# rlimit_rss = +# rlimit_stack = + +# Banner options. (Banners aren't normally used) +# banner = +# banner_success = +# banner_fail = +} + diff --git a/xinetd.d/daytime-stream b/xinetd.d/daytime-stream new file mode 100644 index 00000000..ab3e6707 --- /dev/null +++ b/xinetd.d/daytime-stream @@ -0,0 +1,67 @@ +# This is the configuration for the tcp/stream daytime service. + +service daytime +{ +# This is for quick on or off of the service + disable = yes + +# The next attributes are mandatory for all services + id = daytime-stream + type = INTERNAL + wait = no + socket_type = stream +# protocol = socket type is usually enough + +# External services must fill out the following +# user = +# group = +# server = +# server_args = + +# External services not listed in /etc/services must fill out the next one +# port = + +# RPC based services must fill out these +# rpc_version = +# rpc_number = + +# Logging options +# log_type = +# log_on_success = +# log_on_failure = + +# Networking options +# flags = +# bind = +# redirect = +# v6only = + +# Access restrictions +# only_from = +# no_access = +# access_times = +# cps = 50 10 +# instances = UNLIMITED +# per_source = UNLIMITED +# max_load = 0 +# deny_time = 120 +# mdns = yes + +# Environmental options +# env = +# passenv = +# nice = 0 +# umask = 022 +# groups = yes +# rlimit_as = +# rlimit_cpu = +# rlimit_data = +# rlimit_rss = +# rlimit_stack = + +# Banner options. (Banners aren't normally used) +# banner = +# banner_success = +# banner_fail = +} + diff --git a/xinetd.d/discard-dgram b/xinetd.d/discard-dgram new file mode 100644 index 00000000..e47a8125 --- /dev/null +++ b/xinetd.d/discard-dgram @@ -0,0 +1,67 @@ +# This is the configuration for the udp/dgram discard service. + +service discard +{ +# This is for quick on or off of the service + disable = yes + +# The next attributes are mandatory for all services + id = discard-dgram + type = INTERNAL + wait = yes + socket_type = dgram +# protocol = socket type is usually enough + +# External services must fill out the following +# user = +# group = +# server = +# server_args = + +# External services not listed in /etc/services must fill out the next one +# port = + +# RPC based services must fill out these +# rpc_version = +# rpc_number = + +# Logging options +# log_type = +# log_on_success = +# log_on_failure = + +# Networking options +# flags = +# bind = +# redirect = +# v6only = + +# Access restrictions +# only_from = +# no_access = +# access_times = +# cps = 50 10 +# instances = UNLIMITED +# per_source = UNLIMITED +# max_load = 0 +# deny_time = 120 +# mdns = yes + +# Environmental options +# env = +# passenv = +# nice = 0 +# umask = 022 +# groups = yes +# rlimit_as = +# rlimit_cpu = +# rlimit_data = +# rlimit_rss = +# rlimit_stack = + +# Banner options. (Banners aren't normally used) +# banner = +# banner_success = +# banner_fail = +} + diff --git a/xinetd.d/discard-stream b/xinetd.d/discard-stream new file mode 100644 index 00000000..8feefae1 --- /dev/null +++ b/xinetd.d/discard-stream @@ -0,0 +1,67 @@ +# This is the configuration for the tcp/stream discard service. + +service discard +{ +# This is for quick on or off of the service + disable = yes + +# The next attributes are mandatory for all services + id = discard-stream + type = INTERNAL + wait = no + socket_type = stream +# protocol = socket type is usually enough + +# External services must fill out the following +# user = +# group = +# server = +# server_args = + +# External services not listed in /etc/services must fill out the next one +# port = + +# RPC based services must fill out these +# rpc_version = +# rpc_number = + +# Logging options +# log_type = +# log_on_success = +# log_on_failure = + +# Networking options +# flags = +# bind = +# redirect = +# v6only = + +# Access restrictions +# only_from = +# no_access = +# access_times = +# cps = 50 10 +# instances = UNLIMITED +# per_source = UNLIMITED +# max_load = 0 +# deny_time = 120 +# mdns = yes + +# Environmental options +# env = +# passenv = +# nice = 0 +# umask = 022 +# groups = yes +# rlimit_as = +# rlimit_cpu = +# rlimit_data = +# rlimit_rss = +# rlimit_stack = + +# Banner options. (Banners aren't normally used) +# banner = +# banner_success = +# banner_fail = +} + diff --git a/xinetd.d/echo-dgram b/xinetd.d/echo-dgram new file mode 100644 index 00000000..48802af3 --- /dev/null +++ b/xinetd.d/echo-dgram @@ -0,0 +1,67 @@ +# This is the configuration for the udp/dgram echo service. + +service echo +{ +# This is for quick on or off of the service + disable = yes + +# The next attributes are mandatory for all services + id = echo-dgram + type = INTERNAL + wait = yes + socket_type = dgram +# protocol = socket type is usually enough + +# External services must fill out the following +# user = +# group = +# server = +# server_args = + +# External services not listed in /etc/services must fill out the next one +# port = + +# RPC based services must fill out these +# rpc_version = +# rpc_number = + +# Logging options +# log_type = +# log_on_success = +# log_on_failure = + +# Networking options +# flags = +# bind = +# redirect = +# v6only = + +# Access restrictions +# only_from = +# no_access = +# access_times = +# cps = 50 10 +# instances = UNLIMITED +# per_source = UNLIMITED +# max_load = 0 +# deny_time = 120 +# mdns = yes + +# Environmental options +# env = +# passenv = +# nice = 0 +# umask = 022 +# groups = yes +# rlimit_as = +# rlimit_cpu = +# rlimit_data = +# rlimit_rss = +# rlimit_stack = + +# Banner options. (Banners aren't normally used) +# banner = +# banner_success = +# banner_fail = +} + diff --git a/xinetd.d/echo-stream b/xinetd.d/echo-stream new file mode 100644 index 00000000..6a4f46fe --- /dev/null +++ b/xinetd.d/echo-stream @@ -0,0 +1,67 @@ +# This is the configuration for the tcp/stream echo service. + +service echo +{ +# This is for quick on or off of the service + disable = yes + +# The next attributes are mandatory for all services + id = echo-stream + type = INTERNAL + wait = no + socket_type = stream +# protocol = socket type is usually enough + +# External services must fill out the following +# user = +# group = +# server = +# server_args = + +# External services not listed in /etc/services must fill out the next one +# port = + +# RPC based services must fill out these +# rpc_version = +# rpc_number = + +# Logging options +# log_type = +# log_on_success = +# log_on_failure = + +# Networking options +# flags = +# bind = +# redirect = +# v6only = + +# Access restrictions +# only_from = +# no_access = +# access_times = +# cps = 50 10 +# instances = UNLIMITED +# per_source = UNLIMITED +# max_load = 0 +# deny_time = 120 +# mdns = yes + +# Environmental options +# env = +# passenv = +# nice = 0 +# umask = 022 +# groups = yes +# rlimit_as = +# rlimit_cpu = +# rlimit_data = +# rlimit_rss = +# rlimit_stack = + +# Banner options. (Banners aren't normally used) +# banner = +# banner_success = +# banner_fail = +} + diff --git a/xinetd.d/ftp-sensor b/xinetd.d/ftp-sensor new file mode 100644 index 00000000..8e72be52 --- /dev/null +++ b/xinetd.d/ftp-sensor @@ -0,0 +1,70 @@ +# This is an example sensor running on the ftp port. Xinetd sensors are +# a form of intrusion detection aimed at locating hosts that are trying +# to access an unadvertised service. Once tripped, they are denied +# access to everything until the deny_time expires. + +service ftp +{ +# This is for quick on or off of the service + disable = yes + +# The next attributes are mandatory for all services + id = ftp-sensor + type = INTERNAL + wait = no + socket_type = stream +# protocol = socket type is usually enough + +# External services must fill out the following +# user = +# group = +# server = +# server_args = + +# External services not listed in /etc/services must fill out the next one +# port = + +# RPC based services must fill out these +# rpc_version = +# rpc_number = + +# Logging options +# log_type = +# log_on_success = +# log_on_failure = + +# Networking options + flags = SENSOR +# bind = +# redirect = +# v6only = + +# Access restrictions +# only_from = +# no_access = +# access_times = +# cps = 50 10 +# instances = UNLIMITED +# per_source = UNLIMITED +# max_load = 0 + deny_time = 120 +# mdns = yes + +# Environmental options +# env = +# passenv = +# nice = 0 +# umask = 022 +# groups = yes +# rlimit_as = +# rlimit_cpu = +# rlimit_data = +# rlimit_rss = +# rlimit_stack = + +# Banner options. (Banners aren't normally used) +# banner = +# banner_success = +# banner_fail = +} + diff --git a/xinetd.d/tcpmux-server b/xinetd.d/tcpmux-server new file mode 100644 index 00000000..43d04b39 --- /dev/null +++ b/xinetd.d/tcpmux-server @@ -0,0 +1,68 @@ +# This is the configuration of the tcpmux server. It must be enabled in +# order to add any other tcpmux services. + +service tcpmux +{ +# This is for quick on or off of the service + disable = yes + +# The next attributes are mandatory for all services + id = tcpmux-server + type = INTERNAL + wait = no + socket_type = stream +# protocol = socket type is usually enough + +# External services must fill out the following +# user = root +# group = +# server = +# server_args = + +# External services not listed in /etc/services must fill out the next one +# port = + +# RPC based services must fill out these +# rpc_version = +# rpc_number = + +# Logging options +# log_type = +# log_on_success = +# log_on_failure = + +# Networking options +# flags = +# bind = +# redirect = +# v6only = + +# Access restrictions +# only_from = +# no_access = +# access_times = +# cps = 50 10 +# instances = UNLIMITED +# per_source = UNLIMITED +# max_load = 0 +# deny_time = 120 +# mdns = yes + +# Environmental options +# env = +# passenv = +# nice = 0 +# umask = 022 +# groups = yes +# rlimit_as = +# rlimit_cpu = +# rlimit_data = +# rlimit_rss = +# rlimit_stack = + +# Banner options. (Banners aren't normally used) +# banner = +# banner_success = +# banner_fail = +} + diff --git a/xinetd.d/time-dgram b/xinetd.d/time-dgram new file mode 100644 index 00000000..eac2066b --- /dev/null +++ b/xinetd.d/time-dgram @@ -0,0 +1,67 @@ +# This is the configuration for the udp/dgram time service. + +service time +{ +# This is for quick on or off of the service + disable = yes + +# The next attributes are mandatory for all services + id = time-dgram + type = INTERNAL + wait = yes + socket_type = dgram +# protocol = socket type is usually enough + +# External services must fill out the following +# user = +# group = +# server = +# server_args = + +# External services not listed in /etc/services must fill out the next one +# port = + +# RPC based services must fill out these +# rpc_version = +# rpc_number = + +# Logging options +# log_type = +# log_on_success = +# log_on_failure = + +# Networking options +# flags = +# bind = +# redirect = +# v6only = + +# Access restrictions +# only_from = +# no_access = +# access_times = +# cps = 50 10 +# instances = UNLIMITED +# per_source = UNLIMITED +# max_load = 0 +# deny_time = 120 +# mdns = yes + +# Environmental options +# env = +# passenv = +# nice = 0 +# umask = 022 +# groups = yes +# rlimit_as = +# rlimit_cpu = +# rlimit_data = +# rlimit_rss = +# rlimit_stack = + +# Banner options. (Banners aren't normally used) +# banner = +# banner_success = +# banner_fail = +} + diff --git a/xinetd.d/time-stream b/xinetd.d/time-stream new file mode 100644 index 00000000..b4b81e4b --- /dev/null +++ b/xinetd.d/time-stream @@ -0,0 +1,67 @@ +# This is the configuration for the tcp/stream time service. + +service time +{ +# This is for quick on or off of the service + disable = yes + +# The next attributes are mandatory for all services + id = time-stream + type = INTERNAL + wait = no + socket_type = stream +# protocol = socket type is usually enough + +# External services must fill out the following +# user = +# group = +# server = +# server_args = + +# External services not listed in /etc/services must fill out the next one +# port = + +# RPC based services must fill out these +# rpc_version = +# rpc_number = + +# Logging options +# log_type = +# log_on_success = +# log_on_failure = + +# Networking options +# flags = +# bind = +# redirect = +# v6only = + +# Access restrictions +# only_from = +# no_access = +# access_times = +# cps = 50 10 +# instances = UNLIMITED +# per_source = UNLIMITED +# max_load = 0 +# deny_time = 120 +# mdns = yes + +# Environmental options +# env = +# passenv = +# nice = 0 +# umask = 022 +# groups = yes +# rlimit_as = +# rlimit_cpu = +# rlimit_data = +# rlimit_rss = +# rlimit_stack = + +# Banner options. (Banners aren't normally used) +# banner = +# banner_success = +# banner_fail = +} + -- 2.39.5