From owner-FreeBSD-users-jp@jp.freebsd.org  Mon Feb 12 17:44:23 2001
Received: (from daemon@localhost)
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) id RAA63714;
	Mon, 12 Feb 2001 17:44:23 +0900 (JST)
	(envelope-from owner-FreeBSD-users-jp@jp.FreeBSD.org)
Received: from yama.b.cc.titech.ac.jp (yama.b.cc.titech.ac.jp [131.112.10.2])
	by castle.jp.freebsd.org (8.9.3+3.2W/8.7.3) with SMTP id RAA63709
	for <FreeBSD-users-jp@jp.freebsd.org>; Mon, 12 Feb 2001 17:44:23 +0900 (JST)
	(envelope-from is92518@e.cc.titech.ac.jp)
Received: (qmail 13043 invoked from network); 12 Feb 2001 08:43:52 -0000
Received: from kan.b.cc.titech.ac.jp (131.112.10.65)
  by yama.b.cc.titech.ac.jp with SMTP; 12 Feb 2001 08:43:52 -0000
Received: (qmail 8611 invoked from network); 12 Feb 2001 08:43:52 -0000
Received: from ed1.b.cc.titech.ac.jp (131.112.10.66)
  by kan.b.cc.titech.ac.jp with SMTP; 12 Feb 2001 08:43:52 -0000
Received: from localhost (localhost [127.0.0.1])
	by ed1.b.cc.titech.ac.jp (8.9.3/3.7W99050711@ed1) with ESMTP id RAA16328
	for <FreeBSD-users-jp@jp.freebsd.org>; Mon, 12 Feb 2001 17:43:51 +0900 (JST)
To: FreeBSD-users-jp@jp.freebsd.org
In-Reply-To: Your message of "Mon, 12 Feb 2001 16:29:06 +0900"
	<200102120729.f1C7T9o11058@shake.sharaku.nuac.nagoya-u.ac.jp>
References: <200102120729.f1C7T9o11058@shake.sharaku.nuac.nagoya-u.ac.jp>
X-Mailer: Mew version 1.93 on Emacs 19.34 / Mule 2.3 (SUETSUMUHANA)
Mime-Version: 1.0
Content-Type: Text/Plain; charset=iso-2022-jp
Content-Transfer-Encoding: 7bit
Message-Id: <20010212174351B.is92518@e.cc.titech.ac.jp>
Date: Mon, 12 Feb 2001 17:43:51 +0900 (JST)
From: Yanagisawa Yoshisato <is92518@e.cc.titech.ac.jp>
X-Dispatcher: imput version 980905(IM100)
Lines: 67
Reply-To: FreeBSD-users-jp@jp.freebsd.org
Precedence: list
X-Distribute: distribute version 2.1 (Alpha) patchlevel 24e+000315
X-Sequence: FreeBSD-users-jp 58910
Subject: [FreeBSD-users-jp 58910] Re: inetd: twist option
Errors-To: owner-FreeBSD-users-jp@jp.freebsd.org
Sender: owner-FreeBSD-users-jp@jp.freebsd.org
X-Originator: is92518@e.cc.titech.ac.jp


$BLx_7!w(Bis.titech.ac.jp $B3XIt(B2$BG/$G$9!#(B

From: Nakano <nakano@sharaku.nuac.nagoya-u.ac.jp>
Subject: [FreeBSD-users-jp 58909] inetd: twist option
Date: Mon, 12 Feb 2001 16:29:06 +0900
Message-ID: <200102120729.f1C7T9o11058@shake.sharaku.nuac.nagoya-u.ac.jp>

nakano> inetd $B$N(B TCP Wrapping $B5!G=$rMxMQ$7!"(B
nakano> 
nakano> /etc/hosts.deny $B$r(B
nakano> ALL : ALL
nakano> 
nakano> /etc/hosts.allow $B$r(B
nakano> ALL : localhost 127.0.0.1 : allow
nakano> $B!J$=$NB>$N@_Dj!K(B
nakano> # The rest of the daemons are protected.
nakano> ALL : ALL \
nakano>         : severity auth.info \
nakano>         : twist /bin/echo "You are not welcome to use %d from %h."
nakano> $B",(Btab $B$G$9(B
nakano> $B$NMQ$K@_Dj$7$FMxMQ$7$F$*$j$^$9!#(B
nakano> $B!J(Bhosts.allow $B$N(B ALL : ALL $B$O!"%*%j%8%J%k$N$b$N$r%Z!<%9%H!K(B
nakano> 
nakano> $B;~!9!"0J2<$N$h$&$J4qL/$J%m%0$,=P$k$N$G$9$,!"(B
nakano> $B@_Dj%U%!%$%k$N$I$3$,$^$:$$$N$G$7$g$&$+!#(B
nakano> 
nakano> portmap[116]: warning: /etc/hosts.allow, line 22: twist_option: dup: Bad file descriptor
nakano> portmap[116]: error: /etc/hosts.allow, line 22: twist option in resident process

% man hosts_options
$B$h$j!"(B
---
     Warning:   in case of UDP services, do not twist to
     commands  that  use  the  standard   I/O   or   the
     read(2)/write(2)  routines  to communicate with the
     client process; UDP requires other I/O  primitives.
---
$B$H$$$&$N$,$"$k$N$G$9$,(B...

$B$H$3$m$G!"(Bportmap$B$O$J$<F0$+$7$F$$$k$s$G$9$+!)(B
NFS$B$H$+$r$*;H$$$G$9$+!)(B

nakano> $B$^$?!"(B/etc/rc.conf $B$K$F!"(B
nakano> log_in_vain="YES"
nakano> $B$r;XDj$7$F!"JD$8$?%]!<%H$X$N%"%/%;%9$N%m%0$r$H$C$F$$$k$N$G$9$,!"(B
nakano> $B0J2<$N$h$&$J%m%0$b=P$^$9!#(B
nakano> 
nakano> /kernel: Connection attempt to UDP 127.0.0.1:512 from 127.0.0.1:1208
nakano> 
nakano> $B$3$l$b!"(B
nakano> ALL : localhost 127.0.0.1 : allow
nakano> $B$HL7=b$9$k$h$&$J5$$,$9$k$N$G$9$,!"2?$+$^$:$$$N$G$7$g$&$+!#(B

$B$I$&L7=b$9$k$s$G$9$+!)(B
log_in_vain(kernel$B$G@)8f(B)$B$H(BTCPWRAPPER(libwrap$B$K$F@)8f(B)$B$K$O(B
$B2?$NAj4X$b$J$$$H;W$&$N$G$9$,(B...

$B$"$H!"(B
nakano> /kernel: Connection attempt to UDP 127.0.0.1:512 from 127.0.0.1:1208
$B$N%a%C%;!<%8$,=P$k$3$H$,G<F@$,$$$+$J$$$3$H$rO@E@$K$7$F$$$k$J$i(B
inetd.conf$B$NCf?H$r8+$J$$$H$I$&$7$h$&$b$J$$$H;W$$$^$9!#(B

-------------------------------------------------
Yoshisato YANAGISAWA<is92518@e.cc.titech.ac.jp>
Dept. of Information Science.Tokyo Insitute of Technology.
-------------------------------------------------
