xinetd enabled is not overruled by disable in service declaration
Affects | Status | Importance | Assigned to | Milestone | |
---|---|---|---|---|---|
xinetd (Ubuntu) |
Expired
|
Low
|
Unassigned |
Bug Description
Binary package hint: xinetd
With a standard installation of xinetd, I added the line:
enabled = chargen-stream
to the defaults part of /etc/xinetd.conf. The disable = yes line is still present in /etc/xinetd.
After restarting the xinetd service, the chargen service is suddenly available. This clashes with the man-page description of enabled:
enabled Takes a list of service ID's to enable. This will
I'm using xinetd-2.3.14-5 on Ubuntu 8.04.1 and xinetd-
Note: I've marked this as a security problem, as the user might think that a specific service is disabled, while in reality xinetd still enables the service.
Thanks for taking the time to report this bug and helping to make Ubuntu better. We appreciate the difficulties you are facing, but this appears to be a "regular" (non-security) bug. I have unmarked it as a security issue since this bug does not show evidence of allowing attackers to cross privilege boundaries nor directly cause loss of data/privacy. Please feel free to report any other bugs you may find.