sslug-teknik team mailing list archive

Thread
Date

Re: Nem firewall på (k)ubuntu?

To: sslug-teknik@xxxxxxxx
From: "Jan Hertel" <jhw100@xxxxxxxxx>
Date: Wed, 28 Nov 2007 12:30:18 +0100
Delivered-to: mailing list sslug-teknik@xxxxxxxx
In-reply-to: <200711281212.05248.j_e_n_pub@yahoo.dk>
Mailing-list: contact sslug-teknik-help@xxxxxxxx; run by ezmlm

Johnny Ernst Nielsen skrev:
> Onsdag 28 november 2007 11:25 kvad Jens Bang:
> > [H]vad er det nu xinetd, gdomap, avahi-daemon og dhclient laver?

<--- klip --->

> De to andre kender jeg ikke.

Er der ikke tale om

http://www.gnustep.org/resources/documentation/Developer/Tools/Reference/gdomap.html

" The gdomap daemon is used by GNUstep programs to look up distributed
objects of processes running on the local machine as well as across
the network.

Usually the gdomap daemon is started at system boot time and binds
itself to port 538. (See the GNUstep Build Guide for a sample startup
script.) It expects to receive fixed-size request packets for
registering, deregistering, and looking up distributed objects
servers. The response packets vary in length depending on the type and
content of the information requested. In addition, limited support for
federation is provided by a rudimentary gdomap-gdomap communications
protocol.  ..." og

http://downloads.openwrt.org/people/nico/man/man8/avahi-daemon.8.html

"The Avahi mDNS/DNS-SD daemon implementing Apple's ZeroConf
architecture (also known as "Rendezvous" or "Bonjour"). The daemon
registers local IP addresses and static services using mDNS/DNS-SD and
provides two IPC APIs for local programs to make use of the mDNS
record cache the avahi-daemon maintains. First there is the so called
"simple protocol" which is used exclusively by avahi-dnsconfd (a
daemon which configures unicast DNS servers using server info
published via mDNS) and nss-mdns (a libc NSS plugin, providing name
resolution via mDNS). Finally there is the DBUS interface which
provides a rich object oriented interface to DBUS enabled
applications.

Upon startup avahi-daemon interprets its configuration file
/etc/avahi/avahi-daemon.conf and reads XML fragments from
/etc/avahi/services/*.service which may define static DNS-SD services.
If you enable publish-resolv-conf-dns-servers in avahi-daemon.conf the
file /etc/resolv.conf will be read, too. ..."

Jeg kan så ikke bedømme om det giver anledning til (mulige) sikkerhedsproblemer?


-- 
/Jan

References

Nem firewall på (k)ubuntu?
From: Jens Bang, 2007-11-28
Re: Nem firewall på (k)ubuntu?
From: Martin Pihl Jensen, 2007-11-28
Re: Nem firewall på (k)ubuntu?
From: Jens Bang, 2007-11-28
Re: Nem firewall på (k)ubuntu?
From: Johnny Ernst Nielsen, 2007-11-28