On Thu, 21 Dec 2006, Jim Laurent wrote: > I am working on a Sol. Sec. Toolkit profile to comply with a customer > requirement. I'm learning a lot but confused a bit by TCP wrappers > configuration. > > I read Glenn Brunette's paper at: > http://www.sun.com/bigadmin/content/submitted/tcp_wrap_solaris10.html > > After running the toolkit with the enable-tcpwrappers.fin script enabled, > I'm getting conflicting information from my Solaris 10 11/06 system: > > # inetadm -p |grep tcp > tcp_trace=TRUE > tcp_wrappers=TRUE >
these are the defaults for inetd services. > # svcprop inetd |grep tcp > defaults/tcp_trace boolean false > defaults/tcp_wrappers boolean false This is the svc:/network/inetd:default instance. It might need to be refreshed. > > # svcprop network/inetd|grep tcp > defaults/tcp_trace boolean true > defaults/tcp_wrappers boolean true > and these are the svc:/network/inetd service. Use the -f flag to svcprop to see what is going on here. -- Dave
