Description
xinetd
xinetd is a cool replacement for inetd, which is the internet services daemon. Basically, it helps manage how your server handles incoming network connections.
Key Features of xinetd
Here are some awesome features:
- It has built-in access control. This means you can stop bad guys from connecting while allowing only the good ones!
- You can compile it with built-in libwrap support. Using hosts.{allow|deny} makes it way more efficient than using tcpd.
- Unlike tcp wrappers that can only see one connection at a time, xinetd can limit the rate of incoming connections, control how many come from specific hosts, or set total limits for a service.
- You can restrict access to services based on the time of day. Pretty handy, right?
- Specific services can bind to specific IP addresses. This way, you can offer different services to internal clients than external ones.
- xinetd helps respond to "port bombs" by controlling incoming connection rates effectively.
- If one host is hogging your services, you can limit their simultaneous connections.
- You have the option to set limits on log file sizes so that no one fills up your disk space unnecessarily.
Logging and Monitoring
You get to configure syslog logging levels for each service independently. If you prefer not to use syslog logging, each service can log to its own file instead. Plus:
- xinetd logs when connections start and stop so you know how long clients are using your services.
- It also keeps track of failed connection attempts with detailed info!
Redirecting Connections
The redir feature lets you redirect TCP streams to another host—even if that other host isn’t directly reachable! So if you're working with a NAT'd machine, just run xinetd with redir and you're all set!
IPv6 Support and User Notifications
As of version 2.1.8.8pre*, xinetd supports IPv6! You’ll also be able to print different banners for users based on whether their connection was successful or failed. This keeps everyone in the loop about what's going on and why they might face issues accessing certain services.
What's New in This Release?
- A patch for gcc 3.5 compatibility has been applied.
- The descriptor now flushes after writing a banner—thanks Jay Fenlason!
- No more assumptions about char being signed in udp drain() function—shout out to Don Provan!
- If remote user logging is enabled, descriptors between 0-2 will open safely—thanks Glen Johnson for this fix!
- Additions include support for mdns advertising and improvements in handling inetd.conf files from FreeBSD ports patch.
User Reviews for xinetd FOR LINUX 7
-
for xinetd FOR LINUX
xinetd FOR LINUX offers robust access control, efficient log management, and IPv6 support. Great for limiting connections and enhancing security.
-
for xinetd FOR LINUX
Xinetd is a fantastic replacement for inetd! Its access control features and connection limits have greatly improved my server's security.
-
for xinetd FOR LINUX
I've been using xinetd for a few months now, and I love its ability to manage connections efficiently. Highly recommend it!
-
for xinetd FOR LINUX
Xinetd has transformed how I handle network services. The logging features are detailed, and the access controls give me peace of mind.
-
for xinetd FOR LINUX
This app is a game changer! Xinetd's capabilities to limit connections and provide detailed logs are invaluable for any server admin.
-
for xinetd FOR LINUX
I am really impressed with xinetd! It simplifies managing multiple services while providing excellent security options.
-
for xinetd FOR LINUX
What an incredible tool! Xinetd has made my network management so much easier, especially with its powerful access control features.