RE: [Nagios-devel] (Fwd) Found denial of service in NRPE for Solaris
Posted: Wed May 21, 2003 12:22 pm
Greg Panula wrote:
> Isn't inetd a "super server"? Meaning it listens on the port, accepts
> in the inbound connection and then spawns the service and passes the
> connection off to freshly spawned the service/daemon.
>=20
> The test he ran above is a little mis-leading... it could be=20
> that inetd
> is dying and therefore port 5666 is longer listening.
Agreed. It could be the simple case that inetd has decided
to disable the service temporarily because it's respawning too
quickly.
> I would suggest running the above test against NRPE while it=20
> is running
> in daemon mode, not under inetd as he did.
Agreed. Might also be interesting to see what happens to NRPE
in a standalone vs. xinetd comparison, just for the sake of
completeness.
> Just my two bits,
> greg
jc
This post was automatically imported from historical nagios-devel mailing list archives
Original poster: [email protected]
> Isn't inetd a "super server"? Meaning it listens on the port, accepts
> in the inbound connection and then spawns the service and passes the
> connection off to freshly spawned the service/daemon.
>=20
> The test he ran above is a little mis-leading... it could be=20
> that inetd
> is dying and therefore port 5666 is longer listening.
Agreed. It could be the simple case that inetd has decided
to disable the service temporarily because it's respawning too
quickly.
> I would suggest running the above test against NRPE while it=20
> is running
> in daemon mode, not under inetd as he did.
Agreed. Might also be interesting to see what happens to NRPE
in a standalone vs. xinetd comparison, just for the sake of
completeness.
> Just my two bits,
> greg
jc
This post was automatically imported from historical nagios-devel mailing list archives
Original poster: [email protected]