Ok, so some more searching and I found this http://sunsolve.sun.com/search/document.do?assetkey=1-25-72911-1 which states: As of Solaris[TM] 9, using the "-t" flag with the inetd daemon is superseded by the /etc/default/inetd file. And then goes on to say: For further information, refer to the Solaris[TM] 9 inetd man page. And of course the man page says that -t works. Ahh, the joy of out of date / inaccurate documentation. On solaris 9 9/05 (most recent 9_Recommended installed) inetd does not seem to honor the -t flag. I have modified /etc/init.d/inetsvc and added the '-t' flag to the startup line for inetd, also I have verified the correct logging settings necessary (daemon.notice) is set correctly to log to /var/adm/messages in /etc/syslog.conf. No inetd connection attempts are logged. Thinking perhaps the -t flag was in some way linked to the "ENABLE_CONNECTION_LOGGING" setting in /etc/default/inetd I set the value in /etc/default/inetd to "YES". This did work, connection attempts were logged (following a restart of inetd) to /var/adm/messages. This led me to think that the flag in /etc/default/inetd had to be "YES" for the -t flag to even work so I now removed the "-t" flag from the inetd startup and rebooted. The system still logged connection attempts (as it should per the man page) because of the setting in /etc/default/inetd. This shows the system seems to completely ignore the "-t" flag to inetd in Solaris 9. Has anyone else had success using -t with inetd in Solaris 9? The main reason I ask is we have a large mix of 8 & 9 systems and I would like to limit the checks / controls to a single item where possible. It would be nice to have this control state that "inetd must run with the -t flag" instead of having to document separate controls for 8 & 9. TIA, Chad Johnson inetd(1M) From http://docs.sun.com/app/docs/doc/817-3937/6mjgeafpj?a=view#indexterm-199 : The /etc/default/inetd file contains the following default parameter settings. See FILES <http://docs.sun.com/app/docs/doc/817-3937/6mjgeafpj?a=view#inetd-1m-fil e> . ENABLE_CONNECTION_LOGGING Specifies whether incoming TCP connections are traced. The value ENABLE_CONNECTION_LOGGING=YES is equivalent to the -t command-line option. The default value for ENABLE_CONNECTION_LOGGING is NO. ..... -t Instructs inetd to trace the incoming connections for all of its TCP services. It does this by logging the client's IP address and TCP port number, along with the name of the service, using the syslog(3C) <http://docs.sun.com/app/docs/doc/817-3939/6mjgg7haf?a=view> facility. "Wait" wait-status services cannot be traced. When tracing is enabled, inetd uses the syslog facility code daemon and notice priority level. This logging is separate from the logging done by the TCP wrappers facility. See FILES <http://docs.sun.com/app/docs/doc/817-3937/6mjgeafpj?a=view#inetd-1m-fil e> . ..... ************************************************************** This message, including any attachments, contains confidential information intended for a specific individual and purpose, and is protected by law. If you are not the intended recipient, please contact sender immediately by reply e-mail and destroy all copies. You are hereby notified that any disclosure, copying, or distribution of this message, or the taking of any action based on it, is strictly prohibited. TIAA-CREF ************************************************************** _______________________________________________ sunmanagers mailing list sunmanagers@sunmanagers.org http://www.sunmanagers.org/mailman/listinfo/sunmanagersReceived on Mon Mar 20 14:23:02 2006
This archive was generated by hypermail 2.1.8 : Thu Mar 03 2016 - 06:43:56 EST