1# $FreeBSD: src/etc/inetd.conf,v 1.44.2.17 2003/06/13 10:43:19 yar Exp $ 2# $DragonFly: src/etc/inetd.conf,v 1.4 2005/07/31 08:31:52 asmodai Exp $ 3# 4# Internet server configuration database 5# 6# Define *both* IPv4 and IPv6 entries for dual-stack support. 7# To disable a service, comment it out by prefixing the line with '#'. 8# To enable a service, remove the '#' at the beginning of the line. 9# 10#ftp stream tcp nowait root /usr/libexec/ftpd ftpd -l 11#ftp stream tcp6 nowait root /usr/libexec/ftpd ftpd -l 12#ssh stream tcp nowait root /usr/sbin/sshd sshd -i -4 13#ssh stream tcp6 nowait root /usr/sbin/sshd sshd -i -6 14#telnet stream tcp nowait root /usr/libexec/telnetd telnetd 15#telnet stream tcp6 nowait root /usr/libexec/telnetd telnetd 16#shell stream tcp nowait root /usr/libexec/rshd rshd 17#shell stream tcp6 nowait root /usr/libexec/rshd rshd 18#login stream tcp nowait root /usr/libexec/rlogind rlogind 19#login stream tcp6 nowait root /usr/libexec/rlogind rlogind 20#finger stream tcp nowait/3/10 nobody /usr/libexec/fingerd fingerd -s 21#finger stream tcp6 nowait/3/10 nobody /usr/libexec/fingerd fingerd -s 22#exec stream tcp nowait root /usr/libexec/rexecd rexecd 23#uucpd stream tcp nowait root /usr/libexec/uucpd uucpd 24# 25# run comsat as root to be able to print partial mailbox contents w/ biff, 26# or use the safer tty:tty to just print that new mail has been received. 27#comsat dgram udp wait tty:tty /usr/libexec/comsat comsat 28# 29# ntalk is required for the 'talk' utility to work correctly 30#ntalk dgram udp wait tty:tty /usr/libexec/ntalkd ntalkd 31#tftp dgram udp wait root /usr/libexec/tftpd tftpd -s /tftpboot 32#tftp dgram udp6 wait root /usr/libexec/tftpd tftpd -s /tftpboot 33#bootps dgram udp wait root /usr/libexec/bootpd bootpd 34# 35# "Small servers" -- used to be standard on, but we're more conservative 36# about things due to Internet security concerns. Only turn on what you 37# need. 38# 39#daytime stream tcp nowait root internal 40#daytime stream tcp6 nowait root internal 41#daytime dgram udp wait root internal 42#daytime dgram udp6 wait root internal 43#time stream tcp nowait root internal 44#time stream tcp6 nowait root internal 45#time dgram udp wait root internal 46#time dgram udp6 wait root internal 47#echo stream tcp nowait root internal 48#echo dgram udp6 wait root internal 49#echo dgram udp wait root internal 50#echo stream tcp6 nowait root internal 51#discard stream tcp nowait root internal 52#discard stream tcp6 nowait root internal 53#discard dgram udp wait root internal 54#discard dgram udp6 wait root internal 55#chargen stream tcp nowait root internal 56#chargen stream tcp6 nowait root internal 57#chargen dgram udp wait root internal 58#chargen dgram udp6 wait root internal 59# 60# Kerberos authenticated services 61# 62#klogin stream tcp nowait root /usr/libexec/rlogind rlogind -k 63#eklogin stream tcp nowait root /usr/libexec/rlogind rlogind -k -x 64#kshell stream tcp nowait root /usr/libexec/rshd rshd -k 65#kip stream tcp nowait root /usr/libexec/kipd kipd 66# 67# CVS servers - for master CVS repositories only! You must set the 68# --allow-root path correctly or you open a trivial to exploit but 69# deadly security hole. 70# 71#cvspserver stream tcp nowait root /usr/bin/cvs cvs --allow-root=/your/cvsroot/here pserver 72#cvspserver stream tcp nowait root /usr/bin/cvs cvs --allow-root=/your/cvsroot/here kserver 73# 74# RPC based services (you MUST have portmapper running to use these) 75# 76#rstatd/1-3 dgram rpc/udp wait root /usr/libexec/rpc.rstatd rpc.rstatd 77#rusersd/1-2 dgram rpc/udp wait root /usr/libexec/rpc.rusersd rpc.rusersd 78#walld/1 dgram rpc/udp wait root /usr/libexec/rpc.rwalld rpc.rwalld 79#pcnfsd/1-2 dgram rpc/udp wait root /usr/libexec/rpc.pcnfsd rpc.pcnfsd 80#rquotad/1 dgram rpc/udp wait root /usr/libexec/rpc.rquotad rpc.rquotad 81#sprayd/1 dgram rpc/udp wait root /usr/libexec/rpc.sprayd rpc.sprayd 82# 83# example entry for the optional pop3 server 84# 85#pop3 stream tcp nowait root /usr/local/libexec/popper popper 86# 87# example entry for the optional imap4 server 88# 89#imap4 stream tcp nowait root /usr/local/libexec/imapd imapd 90# 91# example entry for the optional nntp server 92# 93#nntp stream tcp nowait news /usr/local/libexec/nntpd nntpd 94# 95# Return error for all "ident" requests 96# 97#auth stream tcp nowait root internal 98#auth stream tcp6 nowait root internal 99# 100# Provide internally a real "ident" service which provides ~/.fakeid support, 101# provides ~/.noident support, reports UNKNOWN as the operating system type 102# and times out after 30 seconds. 103# 104#auth stream tcp nowait root internal auth -r -f -n -o UNKNOWN -t 30 105#auth stream tcp6 nowait root internal auth -r -f -n -o UNKNOWN -t 30 106# 107# Example entry for an external ident server 108# 109#auth stream tcp wait root /usr/local/sbin/identd identd -w -t120 110# 111# Example entry for the optional qmail MTA 112# NOTE: This is no longer the correct way to handle incoming SMTP 113# connections for qmail. Use tcpserver (http://cr.yp.to/ucspi-tcp.html) 114# instead. 115# 116#smtp stream tcp nowait qmaild /var/qmail/bin/tcp-env tcp-env /var/qmail/bin/qmail-smtpd 117# 118# Enable the following two entries to enable samba startup from inetd 119# (from the Samba documentation). Enable the third entry to enable the swat 120# samba configuration tool. 121# 122#netbios-ssn stream tcp nowait root /usr/local/sbin/smbd smbd 123#netbios-ns dgram udp wait root /usr/local/sbin/nmbd nmbd 124#swat stream tcp nowait/400 root /usr/local/sbin/swat swat 125# 126# Enable the following entry to enable ftp-proxy to NAT ftp sessions with pf 127# N.B.: inetd binds to * in the default installation so you should add 128# an appropriate block rule to your pf.conf 129# 130#ftp-proxy stream tcp nowait root /usr/libexec/ftp-proxy ftp-proxy 131