On 2006/11/07 12:36, Alexander Farber wrote: > I have a small web server (OpenBSD 4.0 stable) running phpBB with > PostgreSQL.
> Do you think I still need to run inetd? I've looked through the > /etc/inetd.conf and there are only 2 time services + ident. I think > I don't need those 3 services either (my PostgeSQL listens only > to the /var/www/tmp/.s.PGSQL.5432 file). > > So do you think I could switch inetd down or do I miss something? If you're looking to increase security, it's probably better to spend your time looking for some alternative to phpBB (or keeping a close eye on access_log irregularities and security fixes). > And also, do I need these getty processes if I only use ssh and serial > console? What's the benefit? Someone with physical access can't login at the console? (but they can do that anyway, by rebooting the box into single- user mode). The only thing I can see this doing is causing extra pain if there's a problem. You didn't mention disabling PasswordAuthentication in sshd, that's probably a lot more useful. > Could you please tell me, where to switch them off? (I've searched in > man -k tty) ttys(5)
