24049 – Virtual/inetd points to netkit-base

Bug 24049 - Virtual/inetd points to netkit-base

Summary: Virtual/inetd points to netkit-base

Status:	RESOLVED FIXED

Alias:	None

Product:	Gentoo Linux
Classification:	Unclassified
Component:	[OLD] Core system (show other bugs)
Hardware:	x86 Linux

Importance:	High normal (vote)
Assignee:	SpanKY

URL:
Whiteboard:
Keywords:

Depends on:
Blocks:

Reported:	2003-07-07 08:16 UTC by Russell Adams
Modified:	2003-08-11 21:40 UTC (History)
CC List:	1 user (show)

See Also:
Package list:
Runtime testing required:	---

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Russell Adams 2003-07-07 08:16:12 UTC

See short discussion on bug #19403.

Virtual/inetd points to inetd instead of xinetd.

It was my understanding that most distros had standardized on xinetd due to
security concerns.

Bug #8271 refers to the creation of virtual/inetd, but didn't specify which
should be the default.

The ebuild in question includes xinetd profiles with secured settings. The
maintainer has added an insecure inetd profile to make it compatible. 

Unfortunately the default if you have no inetd installed is to install
virtual/inetd, so the insecure inetd daemon is installed by default.

Unless there is a design decision I'm unaware of, I believe virtual/inetd should
default to xinetd.

Comments?

Demo

Comment 1 SpanKY gentoo-dev

2003-07-10 21:06:02 UTC

i'd agree that xinetd should be the default ...

Comment 2 Daniel Ahlberg (RETIRED) gentoo-dev

2003-07-11 05:24:48 UTC

This is not an open security issue.

Comment 3 SpanKY gentoo-dev

2003-07-11 06:06:01 UTC

also interesting to note is that we removed netkit-base from system
and have xinetd in it ...

but we default to netkit-base ? :)

Comment 4 SpanKY gentoo-dev

2003-08-11 21:40:13 UTC

all profiles have been updated, netkit-base is no longer the default virtual or found in any packages in any profiles