Print this page
5069 Removal of wu-ftpd
Reviewed by: Josef 'Jeff' Sipek <josef.sipek@nexenta.com>
Reviewed by: Garrett D'Amore <garrett@damore.org>
Reviewed by: Milan Jurik <milan.jurik@xylab.cz>
Reviewed by: Igor Kozhukhov <ikozhukhov@gmail.com>
Reviewed by: Gary Mills <gary_mills@fastmail.fm>
Reviewed by: Toomas Soome <tsoome@me.com>
Reviewed by: Adam Stevko <adam.stevko@gmail.com>
| Split |
Close |
| Expand all |
| Collapse all |
--- old/usr/src/cmd/svc/profile/generic_limited_net.xml
+++ new/usr/src/cmd/svc/profile/generic_limited_net.xml
1 1 <?xml version='1.0'?>
2 2 <!DOCTYPE service_bundle SYSTEM '/usr/share/lib/xml/dtd/service_bundle.dtd.1'>
3 3 <!--
4 4 CDDL HEADER START
5 5
6 6 The contents of this file are subject to the terms of the
7 7 Common Development and Distribution License (the "License").
8 8 You may not use this file except in compliance with the License.
9 9
10 10 You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
11 11 or http://www.opensolaris.org/os/licensing.
12 12 See the License for the specific language governing permissions
13 13 and limitations under the License.
14 14
15 15 When distributing Covered Code, include this CDDL HEADER in each
16 16 file and include the License file at usr/src/OPENSOLARIS.LICENSE.
17 17 If applicable, add the following below this CDDL HEADER, with the
18 18 fields enclosed by brackets "[]" replaced with your own identifying
19 19 information: Portions Copyright [yyyy] [name of copyright owner]
20 20
21 21 CDDL HEADER END
22 22
23 23 Copyright 2010 Sun Microsystems, Inc. All rights reserved.
24 24 Use is subject to license terms.
25 25
26 26 The purpose of the limited_net profile is to provide a set of
27 27 active services that allow one to connect to the machine via ssh
28 28 (requires sshd). The services which are deactivated here are those
29 29 that are at odds with this goal. Those which are activated are
30 30 explicit requirements for the goal's satisfaction.
31 31
32 32 NOTE: Service profiles delivered by this package are not editable,
33 33 and their contents will be overwritten by package or patch
34 34 operations, including operating system upgrade. Make customizations
35 35 in a distinct file. The paths, /etc/svc/profile/site.xml and
36 36 /var/svc/profile/site.xml, are distinguished locations for site-specific
37 37 service profile, treated otherwise equivalently to this file.
38 38 -->
39 39 <service_bundle type='profile' name='generic_limited_net'
40 40 xmlns:xi='http://www.w3.org/2003/XInclude' >
41 41 <!--
42 42 Include name service profile, as set by system id tools.
43 43 -->
44 44 <xi:include href='file:/etc/svc/profile/name_service.xml' />
45 45
46 46 <!--
47 47 svc.startd(1M) services
48 48 -->
49 49 <service name='system/coreadm' version='1' type='service'>
50 50 <instance name='default' enabled='true'/>
51 51 </service>
52 52 <service name='system/cron' version='1' type='service'>
53 53 <instance name='default' enabled='true'/>
54 54 </service>
55 55 <service name='system/cryptosvc' version='1' type='service'>
56 56 <instance name='default' enabled='true'/>
57 57 </service>
58 58 <service name='system/dbus' version='1' type='service'>
59 59 <instance name='default' enabled='true'/>
60 60 </service>
61 61 <service name='system/extended-accounting' version='1' type='service'>
62 62 <instance name='flow' enabled='false'/>
63 63 <instance name='process' enabled='false'/>
64 64 <instance name='task' enabled='false'/>
65 65 <instance name='net' enabled='false'/>
66 66 </service>
67 67 <service name='system/hal' version='1' type='service'>
68 68 <instance name='default' enabled='true'/>
69 69 </service>
70 70 <service name='system/identity' version='1' type='service'>
71 71 <instance name='domain' enabled='true'/>
72 72 </service>
73 73 <service name='system/intrd' version='1' type='service'>
74 74 <instance name='default' enabled='true'/>
75 75 </service>
76 76 <service name='system/keymap' version='1' type='service'>
77 77 <instance name='default' enabled='true'/>
78 78 </service>
79 79 <service name='system/picl' version='1' type='service'>
80 80 <instance name='default' enabled='true'/>
81 81 </service>
82 82 <service name='system/sac' version='1' type='service'>
83 83 <instance name='default' enabled='true'/>
84 84 </service>
85 85 <service name='system/scheduler' version='1' type='service'>
86 86 <instance name='default' enabled='true'/>
87 87 </service>
88 88 <service name='system/system-log' version='1' type='service'>
89 89 <instance name='default' enabled='true'/>
90 90 </service>
91 91 <service name='system/utmp' version='1' type='service'>
92 92 <instance name='default' enabled='true'/>
93 93 </service>
94 94 <service name='system/zones' version='1' type='service'>
95 95 <instance name='default' enabled='true'/>
96 96 </service>
97 97 <service name='network/rpc/bind' version='1' type='service'>
98 98 <instance name='default' enabled='true'/>
99 99 </service>
100 100 <service name='system/name-service-cache' version='1' type='service'>
101 101 <instance name='default' enabled='true'/>
102 102 </service>
103 103 <service name='network/nfs/status' version='1' type='service'>
104 104 <instance name='default' enabled='false'/>
105 105 </service>
106 106 <service name='network/nfs/nlockmgr' version='1' type='service'>
107 107 <instance name='default' enabled='false'/>
108 108 </service>
109 109 <service name='network/nfs/client' version='1' type='service'>
110 110 <instance name='default' enabled='false'/>
111 111 </service>
112 112 <service name='network/nfs/server' version='1' type='service'>
113 113 <instance name='default' enabled='false'/>
114 114 </service>
115 115 <service name='network/nfs/rquota' version='1' type='service'>
116 116 <instance name='default' enabled='false'/>
117 117 </service>
118 118 <service name='network/nfs/cbd' version='1' type='service'>
119 119 <instance name='default' enabled='false'/>
120 120 </service>
121 121 <service name='network/nfs/mapid' version='1' type='service'>
122 122 <instance name='default' enabled='false'/>
123 123 </service>
124 124 <service name='network/smb/client' version='1' type='service'>
125 125 <instance name='default' enabled='false'/>
126 126 </service>
127 127
128 128 <service name='network/ssh' version='1' type='service'>
129 129 <instance name='default' enabled='true'/>
130 130 </service>
131 131 <service name='network/smtp' version='1' type='service'>
132 132 <instance name='sendmail' enabled='true'/>
133 133 </service>
134 134 <service name='network/sendmail-client' version='1' type='service'>
135 135 <instance name='default' enabled='true'/>
136 136 </service>
137 137 <service name='network/inetd' version='1' type='restarter'>
138 138 <instance name='default' enabled='true'/>
139 139 </service>
140 140 <service name='system/filesystem/autofs' version='1' type='service'>
141 141 <instance name='default' enabled='true'/>
142 142 </service>
143 143 <service name='system/filesystem/rmvolmgr' version='1' type='service'>
144 144 <instance name='default' enabled='true'/>
145 145 </service>
146 146 <service name='system/power' version='1' type='service'>
147 147 <instance name='default' enabled='true'/>
148 148 </service>
149 149
150 150 <service name='network/dns/multicast' version='1' type='service'>
151 151 <instance name='default' enabled='false'/>
152 152 </service>
153 153 <service name='network/dhcp-server' version='1' type='service'>
154 154 <instance name='default' enabled='false' />
155 155 </service>
156 156 <service name='network/ntp' version='1' type='service'>
157 157 <instance name='default' enabled='false' />
158 158 </service>
159 159 <service name='network/rarp' version='1' type='service'>
160 160 <instance name='default' enabled='false' />
161 161 </service>
162 162 <service name='network/slp' version='1' type='service'>
163 163 <instance name='default' enabled='false' />
164 164 </service>
165 165 <service name='network/security/kadmin' version='1' type='service'>
166 166 <instance name='default' enabled='false' />
167 167 </service>
168 168 <service name='network/security/krb5_prop' version='1' type='service'>
169 169 <instance name='default' enabled='false' />
170 170 </service>
171 171 <service name='network/security/krb5kdc' version='1' type='service'>
172 172 <instance name='default' enabled='false' />
173 173 </service>
174 174
175 175 <service name='application/management/net-snmp' version='1' type='service'>
176 176 <instance name='default' enabled='false' />
177 177 </service>
178 178 <service name='application/management/seaport' version='1' type='service'>
179 179 <instance name='default' enabled='false' />
180 180 </service>
181 181 <service name='application/management/snmpdx' version='1' type='service'>
182 182 <instance name='default' enabled='false' />
183 183 </service>
184 184 <service name='application/management/wbem' version='1' type='service'>
185 185 <instance name='default' enabled='true' />
186 186 </service>
187 187 <service name='application/print/ipp-listener' version='1' type='service'>
188 188 <instance name='default' enabled='false' />
189 189 </service>
190 190 <service name='application/print/ppd-cache-update' version='1' type='service'>
191 191 <instance name='default' enabled='true' />
192 192 </service>
193 193 <service name='application/print/rfc1179' version='1' type='service'>
194 194 <instance name='default' enabled='false' />
195 195 </service>
196 196 <service name='application/cups/in-lpd' version='1' type='service'>
197 197 <instance name='default' enabled='false' />
198 198 </service>
|
↓ open down ↓ |
198 lines elided |
↑ open up ↑ |
199 199 <service name='application/stosreg' version='1' type='service'>
200 200 <instance name='default' enabled='true' />
201 201 </service>
202 202
203 203 <!--
204 204 default inetd(1M) services
205 205 -->
206 206 <service name='network/finger' version='1' type='service'>
207 207 <instance name='default' enabled='false'/>
208 208 </service>
209 - <service name='network/ftp' version='1' type='service'>
210 - <instance name='default' enabled='false'/>
211 - </service>
212 209 <service name='network/login' version='1' type='service'>
213 210 <instance name='rlogin' enabled='false'/>
214 211 <instance name='klogin' enabled='false'/>
215 212 <instance name='eklogin' enabled='false'/>
216 213 </service>
217 214 <service name='network/shell' version='1' type='service'>
218 215 <instance name='default' enabled='false'/>
219 216 <instance name='kshell' enabled='false'/>
220 217 </service>
221 218 <service name='network/telnet' version='1' type='service'>
222 219 <instance name='default' enabled='false'/>
223 220 </service>
224 221
225 222 <!--
226 223 non-default inetd(1M) services
227 224 -->
228 225 <service name='network/uucp' version='1' type='service'>
229 226 <instance name='default' enabled='false'/>
230 227 </service>
231 228 <service name='network/chargen' version='1' type='service'>
232 229 <instance name='stream' enabled='false'/>
233 230 <instance name='dgram' enabled='false'/>
234 231 </service>
235 232 <service name='network/daytime' version='1' type='service'>
236 233 <instance name='stream' enabled='false'/>
237 234 <instance name='dgram' enabled='false'/>
238 235 </service>
239 236 <service name='network/discard' version='1' type='service'>
240 237 <instance name='stream' enabled='false'/>
241 238 <instance name='dgram' enabled='false'/>
242 239 </service>
243 240 <service name='network/echo' version='1' type='service'>
244 241 <instance name='stream' enabled='false'/>
245 242 <instance name='dgram' enabled='false'/>
246 243 </service>
247 244 <service name='network/time' version='1' type='service'>
248 245 <instance name='stream' enabled='false'/>
249 246 <instance name='dgram' enabled='false'/>
250 247 </service>
251 248 <service name='network/comsat' version='1' type='service'>
252 249 <instance name='default' enabled='false'/>
253 250 </service>
254 251 <service name='network/rexec' version='1' type='service'>
255 252 <instance name='default' enabled='false'/>
256 253 </service>
257 254 <service name='network/talk' version='1' type='service'>
258 255 <instance name='default' enabled='false'/>
259 256 </service>
260 257 <service name='network/stdiscover' version='1' type='service'>
261 258 <instance name='default' enabled='false'/>
262 259 </service>
263 260 <service name='network/stlisten' version='1' type='service'>
264 261 <instance name='default' enabled='false'/>
265 262 </service>
266 263
267 264 <!--
268 265 default inetd(1M) RPC services enabled
269 266 -->
270 267 <service name='network/rpc/gss' version='1' type='service'>
271 268 <instance name='default' enabled='true'/>
272 269 </service>
273 270 <service name='network/rpc/mdcomm' version='1' type='service'>
274 271 <instance name='default' enabled='false'/>
275 272 </service>
276 273 <service name='network/rpc/smserver' version='1' type='service'>
277 274 <instance name='default' enabled='true'/>
278 275 </service>
279 276 <service name='network/security/ktkt_warn' version='1' type='service'>
280 277 <instance name='default' enabled='true'/>
281 278 </service>
282 279
283 280 <!--
284 281 default inetd(1M) RPC services disabled
285 282 -->
286 283 <service name='network/rpc/rstat' version='1' type='service'>
287 284 <instance name='default' enabled='false'/>
288 285 </service>
289 286 <service name='network/rpc/rusers' version='1' type='service'>
290 287 <instance name='default' enabled='false'/>
291 288 </service>
292 289 <service name='network/rpc/meta' version='1' type='service'>
293 290 <instance name='default' enabled='false'/>
294 291 </service>
295 292 <service name='network/rpc/metamed' version='1' type='service'>
296 293 <instance name='default' enabled='false'/>
297 294 </service>
298 295 <service name='network/rpc/metamh' version='1' type='service'>
299 296 <instance name='default' enabled='false'/>
300 297 </service>
301 298
302 299 <!--
303 300 non-default inetd(1M) RPC services disabled
304 301 -->
305 302 <service name='network/rpc/rex' version='1' type='service'>
306 303 <instance name='default' enabled='false'/>
307 304 </service>
308 305 <service name='network/rpc/spray' version='1' type='service'>
309 306 <instance name='default' enabled='false'/>
310 307 </service>
311 308 <service name='network/rpc/wall' version='1' type='service'>
312 309 <instance name='default' enabled='false'/>
313 310 </service>
314 311
315 312 <!--
316 313 Disable Avahi mDNS bridge service
317 314 -->
318 315 <service name='system/avahi-bridge-dsd' version='1' type='service'>
319 316 <instance name='default' enabled='false'/>
320 317 </service>
321 318
322 319 <!--
323 320 Enable CDE/ToolTalk/GDM services.
324 321 -->
325 322 <service name='network/rpc/cde-ttdbserver' version='1' type='service'>
326 323 <instance name='tcp' enabled='true' />
327 324 </service>
328 325 <service name='application/graphical-login/gdm' version='1'
329 326 type='service'>
330 327 <instance name='default' enabled='true' />
331 328 </service>
332 329 <service name='network/rpc/cde-calendar-manager' version='1' type='service'>
333 330 <instance name='default' enabled='true'/>
334 331 </service>
335 332
336 333 <!--
337 334 Disable X11 services.
338 335 -->
339 336 <service name='application/x11/xfs' version='1' type='service'>
340 337 <instance name='default' enabled='false'/>
341 338 </service>
342 339
343 340 <!--
344 341 Enable VNC config service for xVM
345 342 -->
346 343 <service name='system/xvm/vnc-config' version='1' type='service'>
347 344 <instance name='default' enabled='true'/>
348 345 </service>
349 346
350 347 <service name='system/xvm/ipagent' version='1' type='service'>
351 348 <instance name='default' enabled='true'/>
352 349 </service>
353 350
354 351 </service_bundle>
|
↓ open down ↓ |
133 lines elided |
↑ open up ↑ |
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX