diff --git a/en_US.ISO8859-1/books/handbook/advanced-networking/chapter.xml b/en_US.ISO8859-1/books/handbook/advanced-networking/chapter.xml index 25f376583f..e44e2de5d1 100644 --- a/en_US.ISO8859-1/books/handbook/advanced-networking/chapter.xml +++ b/en_US.ISO8859-1/books/handbook/advanced-networking/chapter.xml @@ -4232,7 +4232,7 @@ cd /usr/src/etc; make distribution Enable &man.inetd.8; by following the steps outlined - in . + in . diff --git a/en_US.ISO8859-1/books/handbook/network-servers/chapter.xml b/en_US.ISO8859-1/books/handbook/network-servers/chapter.xml index e672046bcf..a0aa6f1fb0 100644 --- a/en_US.ISO8859-1/books/handbook/network-servers/chapter.xml +++ b/en_US.ISO8859-1/books/handbook/network-servers/chapter.xml @@ -132,20 +132,20 @@ --> The <application>inetd</application> - <quote>Super-Server</quote> + Super-Server - Overview - The &man.inetd.8; daemon is sometimes referred to as the - Internet Super-Server because it manages - connections for many services. When a connection is received - by inetd, it determines which - program the connection is destined for, spawns the particular - process and delegates the socket to it (the program is invoked - with the service socket as its standard input, output and - error descriptors). Running inetd - for servers that are not heavily used can reduce the overall + The &man.inetd.8; daemon is sometimes referred to as a + Super-Server because it manages + connections for many services. Instead of starting multiple + applications, only the inetd service + needs to be started. When a connection is received + for a service that is managed by inetd, it determines which + program the connection is destined for, spawns a + process for that program, and delegates the program a socket. + Using inetd + for services that are not heavily used can reduce system load, when compared to running each daemon individually in stand-alone mode. @@ -155,133 +155,44 @@ auth, and daytime. - This section covers the basics in configuring - inetd through its command-line - options and its configuration file, - /etc/inetd.conf. - - - - Settings - - inetd is initialized through - the &man.rc.8; system. The inetd_enable - option is set to NO by default. It can be - enabled by placing: - - inetd_enable="YES" - - into /etc/rc.conf. - inetd will now start at boot time. - The command: - - &prompt.root; service inetd rcvar - - can be run to display the current effective - setting. - - Additionally, different command-line options can be passed - to inetd via the - inetd_flags option. - - - - Command-Line Options - - Like most server daemons, inetd - has a number of options that it can be passed in order to - modify its behaviour. Refer to &man.inetd.8; for - the full list of options. - - Options can be passed to inetd - using the inetd_flags option in - /etc/rc.conf. By default, - inetd_flags is set to - -wW -C 60, which turns on TCP wrapping for - inetd's services, and prevents any - single IP address from requesting any - service more than 60 times in any given minute. - - Although we mention rate-limiting options below, novice - users may be pleased to note that these parameters usually do - not need to be modified. These options may be useful if - an excessive amount of connections are being established. - A full list of options can be found in - &man.inetd.8;. - - - - -c maximum - - - Specify the default maximum number of simultaneous - invocations of each service; the default is unlimited. - May be overridden on a per-service basis with the - parameter. - - - - - -C rate - - - Specify the default maximum number of times a - service can be invoked from a single - IP address in one minute; the default - is unlimited. May be overridden on a per-service basis - with the - - parameter. - - - - - -R rate - - - Specify the maximum number of times a service can be - invoked in one minute; the default is 256. A rate of 0 - allows an unlimited number of invocations. - - - - - -s maximum - - - Specify the maximum number of times a service can be - invoked from a single IP address at - any one time; the default is unlimited. May be - overridden on a per-service basis with the - parameter. - - - + This section covers the basics of configuring + inetd. - - <filename>inetd.conf</filename> + Configuration File Configuration of inetd is - done by editing /etc/inetd.conf. + done by editing /etc/inetd.conf. Each line of this configuration file represents an application + which can be started by inetd. By + default, every line starts with a comment + (#), meaning that inetd + is not listening for any applications. To configure + inetd to listen for an application's + connections, remove the # at the beginning of + the line for that application. - When a modification is made to - /etc/inetd.conf, - inetd can be forced to re-read its - configuration file by running the command: + After saving your edits, configure inetd + to start at system boot by editing /etc/rc.conf: - - Reloading the <application>inetd</application> - Configuration File + inetd_enable="YES" - &prompt.root; service inetd reload - + To start + inetd now, so that it listens for + the service you configured, type: - Each line of the configuration file specifies an - individual daemon. Comments in the file are preceded by a - #. The format of each entry in - /etc/inetd.conf is as follows: + &prompt.root; service inetd start + + Typically, the default entry for an application does not + need to be edited beyond removing the #. + In some situations, it may be appropriate to edit the default + entry. + + As an example, this is the default entry for &man.ftpd.8; using IPv4: + + ftp stream tcp nowait root /usr/libexec/ftpd ftpd -l + + The seven columns in an entry are as follows: service-name socket-type @@ -291,10 +202,7 @@ user[:group][/login-class] server-program server-program-arguments - An example entry for the &man.ftpd.8; daemon using IPv4 - might read: - - ftp stream tcp nowait root /usr/libexec/ftpd ftpd -l + where: @@ -489,6 +397,95 @@ server-program-arguments + + When a modification is made to + /etc/inetd.conf, + inetd can be forced to re-read its + configuration file by running the command: + + + Reloading the <application>inetd</application> + Configuration File + + &prompt.root; service inetd reload + + + + + Command-Line Options + + Additionally, different command-line options can be passed + to inetd via the + inetd_flags option. + Like most server daemons, inetd + has a number of options that it can be passed in order to + modify its behaviour. Refer to &man.inetd.8; for + the full list of options. + + Options can be passed to inetd + using the inetd_flags option in + /etc/rc.conf. By default, + inetd_flags is set to + -wW -C 60, which turns on TCP wrapping for + inetd's services, and prevents any + single IP address from requesting any + service more than 60 times in any given minute. + + Although we mention rate-limiting options below, novice + users may be pleased to note that these parameters usually do + not need to be modified. These options may be useful if + an excessive amount of connections are being established. + A full list of options can be found in + &man.inetd.8;. + + + + -c maximum + + + Specify the default maximum number of simultaneous + invocations of each service; the default is unlimited. + May be overridden on a per-service basis with the + parameter. + + + + + -C rate + + + Specify the default maximum number of times a + service can be invoked from a single + IP address in one minute; the default + is unlimited. May be overridden on a per-service basis + with the + + parameter. + + + + + -R rate + + + Specify the maximum number of times a service can be + invoked in one minute; the default is 256. A rate of 0 + allows an unlimited number of invocations. + + + + + -s maximum + + + Specify the maximum number of times a service can be + invoked from a single IP address at + any one time; the default is unlimited. May be + overridden on a per-service basis with the + parameter. + + +