See short discussion on bug #19403. Virtual/inetd points to inetd instead of xinetd. It was my understanding that most distros had standardized on xinetd due to security concerns. Bug #8271 refers to the creation of virtual/inetd, but didn't specify which should be the default. The ebuild in question includes xinetd profiles with secured settings. The maintainer has added an insecure inetd profile to make it compatible. Unfortunately the default if you have no inetd installed is to install virtual/inetd, so the insecure inetd daemon is installed by default. Unless there is a design decision I'm unaware of, I believe virtual/inetd should default to xinetd. Comments? Demo
i'd agree that xinetd should be the default ...
This is not an open security issue.
also interesting to note is that we removed netkit-base from system and have xinetd in it ... but we default to netkit-base ? :)
all profiles have been updated, netkit-base is no longer the default virtual or found in any packages in any profiles