File: inetd.txt

package info (click to toggle)
tiger 2.2.4-22
  • links: PTS
  • area: main
  • in suites: woody
  • size: 2,188 kB
  • ctags: 240
  • sloc: sh: 8,388; ansic: 2,109; makefile: 141; perl: 106
file content (58 lines) | stat: -rw-r--r-- 2,546 bytes parent folder | download 
1
2
3
4
5
6
7
8
9
10
11
12
13
14
15
16
17
18
19
20
21
22
23
24
25
26
27
28
29
30
31
32
33
34
35
36
37
38
39
40
41
42
43
44
45
46
47
48
49
50
51
52
53
54
55
56
57
58
 
%inet001e
One or the other of the two listed files are unavailable.  These
files are required for the checks to proceed.  This either indicates
an incorrect configuration, or that a port to this machine has not
been completed.
%inet002f
The indicated service is assigned to the wrong port.  This indicates
either a misconfiguration in the services database, or a possible
sign of an intrusion.  This should be checked and corrected.  If it
is not apparent why it is like this, the system should be checked
for other signs of intrusion.
%inet003f
The indicated port number is assigned to the wrong service.  This
indicates either a misconfiguration in the services database, or a
possible sign of an intrusion.  This should be checked and corrected.
If it is not apparent why it is like this, the system should be
checked for other signs of intrusion.
%inet004i
The indicated service has been added to the services database
as distributed.  These are normal output, but you should be
familiar with what is there, and note any changes.
%inet005w
'inetd' is using the indicated binary for the listed service instead
of what is normally expected there.  Unexpected differences should
be checked, and if anything unusual is found, the system should
be checked for other signs of intrusion.
%inet006f
The 'rexd' service is very insecure and should never be enabled.
It should be disabled immediately by editing the inetd.conf file
and removing the 'rexd' entry, and sending a HUP signal to the
'inetd' process.

For AIX systems, CERT Advisory CA-92:05 is applicable.
%inet007w
'inetd' is using the indicated executable for a port other than
what would normally be expected for this port.  This may indicate
a backdoor into the system and should be checked.  If anything
unusual is found, the system should be checked for other signs
of intrusion.
%inet008
The owner of the indicated executable is not 'root'.  The owner
of the executable should be root in order to reduce the possibility
of it being altered or replaced.
%inet009
The indicated executable is group writable, world writable or both.
The executable should be owned by root and writable only by the
owner.  This reduces the possibility of it being altered  or replaced.
%inet010i
The program listed in the `inetd' configuration file does not
exist or is not executable.
%inet011i
The listed entry is a local addition to the `inetd.conf' file.
This should be checked to see if it is a valid addition.  If it
is not, it should be removed.
%inet012w
sysstat enabled
%inet013w
netstat enabled