Print this page
8112 EOF crazier RPC daemons
| Split |
Close |
| Expand all |
| Collapse all |
--- old/usr/src/cmd/svc/profile/generic_limited_net.xml
+++ new/usr/src/cmd/svc/profile/generic_limited_net.xml
1 1 <?xml version='1.0'?>
2 2 <!DOCTYPE service_bundle SYSTEM '/usr/share/lib/xml/dtd/service_bundle.dtd.1'>
3 3 <!--
4 4 CDDL HEADER START
5 5
6 6 The contents of this file are subject to the terms of the
7 7 Common Development and Distribution License (the "License").
8 8 You may not use this file except in compliance with the License.
9 9
10 10 You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
11 11 or http://www.opensolaris.org/os/licensing.
12 12 See the License for the specific language governing permissions
13 13 and limitations under the License.
14 14
15 15 When distributing Covered Code, include this CDDL HEADER in each
16 16 file and include the License file at usr/src/OPENSOLARIS.LICENSE.
17 17 If applicable, add the following below this CDDL HEADER, with the
18 18 fields enclosed by brackets "[]" replaced with your own identifying
19 19 information: Portions Copyright [yyyy] [name of copyright owner]
20 20
21 21 CDDL HEADER END
22 22
23 23 Copyright 2010 Sun Microsystems, Inc. All rights reserved.
24 24 Use is subject to license terms.
25 25
26 26 The purpose of the limited_net profile is to provide a set of
27 27 active services that allow one to connect to the machine via ssh
28 28 (requires sshd). The services which are deactivated here are those
29 29 that are at odds with this goal. Those which are activated are
30 30 explicit requirements for the goal's satisfaction.
31 31
32 32 NOTE: Service profiles delivered by this package are not editable,
33 33 and their contents will be overwritten by package or patch
34 34 operations, including operating system upgrade. Make customizations
35 35 in a distinct file. The paths, /etc/svc/profile/site.xml and
36 36 /var/svc/profile/site.xml, are distinguished locations for site-specific
37 37 service profile, treated otherwise equivalently to this file.
38 38 -->
39 39 <service_bundle type='profile' name='generic_limited_net'
40 40 xmlns:xi='http://www.w3.org/2003/XInclude' >
41 41 <!--
42 42 Include name service profile, as set by system id tools.
43 43 -->
44 44 <xi:include href='file:/etc/svc/profile/name_service.xml' />
45 45
46 46 <!--
47 47 svc.startd(1M) services
48 48 -->
49 49 <service name='system/coreadm' version='1' type='service'>
50 50 <instance name='default' enabled='true'/>
51 51 </service>
52 52 <service name='system/cron' version='1' type='service'>
53 53 <instance name='default' enabled='true'/>
54 54 </service>
55 55 <service name='system/cryptosvc' version='1' type='service'>
56 56 <instance name='default' enabled='true'/>
57 57 </service>
58 58 <service name='system/dbus' version='1' type='service'>
59 59 <instance name='default' enabled='true'/>
60 60 </service>
61 61 <service name='system/extended-accounting' version='1' type='service'>
62 62 <instance name='flow' enabled='false'/>
63 63 <instance name='process' enabled='false'/>
64 64 <instance name='task' enabled='false'/>
65 65 <instance name='net' enabled='false'/>
66 66 </service>
67 67 <service name='system/hal' version='1' type='service'>
68 68 <instance name='default' enabled='true'/>
69 69 </service>
70 70 <service name='system/identity' version='1' type='service'>
71 71 <instance name='domain' enabled='true'/>
72 72 </service>
73 73 <service name='system/intrd' version='1' type='service'>
74 74 <instance name='default' enabled='true'/>
75 75 </service>
76 76 <service name='system/keymap' version='1' type='service'>
77 77 <instance name='default' enabled='true'/>
78 78 </service>
79 79 <service name='system/picl' version='1' type='service'>
80 80 <instance name='default' enabled='true'/>
81 81 </service>
82 82 <service name='system/sac' version='1' type='service'>
83 83 <instance name='default' enabled='true'/>
84 84 </service>
85 85 <service name='system/scheduler' version='1' type='service'>
86 86 <instance name='default' enabled='true'/>
87 87 </service>
88 88 <service name='system/system-log' version='1' type='service'>
89 89 <instance name='default' enabled='true'/>
90 90 </service>
91 91 <service name='system/utmp' version='1' type='service'>
92 92 <instance name='default' enabled='true'/>
93 93 </service>
94 94 <service name='system/zones' version='1' type='service'>
95 95 <instance name='default' enabled='true'/>
96 96 </service>
97 97 <service name='network/rpc/bind' version='1' type='service'>
98 98 <instance name='default' enabled='true'/>
99 99 </service>
100 100 <service name='system/name-service-cache' version='1' type='service'>
101 101 <instance name='default' enabled='true'/>
102 102 </service>
103 103 <service name='network/nfs/status' version='1' type='service'>
104 104 <instance name='default' enabled='false'/>
105 105 </service>
106 106 <service name='network/nfs/nlockmgr' version='1' type='service'>
107 107 <instance name='default' enabled='false'/>
108 108 </service>
109 109 <service name='network/nfs/client' version='1' type='service'>
110 110 <instance name='default' enabled='false'/>
111 111 </service>
112 112 <service name='network/nfs/server' version='1' type='service'>
113 113 <instance name='default' enabled='false'/>
114 114 </service>
115 115 <service name='network/nfs/rquota' version='1' type='service'>
116 116 <instance name='default' enabled='false'/>
117 117 </service>
118 118 <service name='network/nfs/cbd' version='1' type='service'>
119 119 <instance name='default' enabled='false'/>
120 120 </service>
121 121 <service name='network/nfs/mapid' version='1' type='service'>
122 122 <instance name='default' enabled='false'/>
123 123 </service>
124 124 <service name='network/smb/client' version='1' type='service'>
125 125 <instance name='default' enabled='false'/>
126 126 </service>
127 127
128 128 <service name='network/ssh' version='1' type='service'>
129 129 <instance name='default' enabled='true'/>
130 130 </service>
131 131 <service name='network/smtp' version='1' type='service'>
132 132 <instance name='sendmail' enabled='true'/>
133 133 </service>
134 134 <service name='network/sendmail-client' version='1' type='service'>
135 135 <instance name='default' enabled='true'/>
136 136 </service>
137 137 <service name='network/inetd' version='1' type='restarter'>
138 138 <instance name='default' enabled='true'/>
139 139 </service>
140 140 <service name='system/filesystem/autofs' version='1' type='service'>
141 141 <instance name='default' enabled='true'/>
142 142 </service>
143 143 <service name='system/filesystem/rmvolmgr' version='1' type='service'>
144 144 <instance name='default' enabled='true'/>
145 145 </service>
146 146 <service name='system/power' version='1' type='service'>
147 147 <instance name='default' enabled='true'/>
148 148 </service>
149 149
150 150 <service name='network/dns/multicast' version='1' type='service'>
151 151 <instance name='default' enabled='false'/>
152 152 </service>
153 153 <service name='network/dhcp-server' version='1' type='service'>
154 154 <instance name='default' enabled='false' />
155 155 </service>
156 156 <service name='network/ntp' version='1' type='service'>
157 157 <instance name='default' enabled='false' />
158 158 </service>
159 159 <service name='network/rarp' version='1' type='service'>
160 160 <instance name='default' enabled='false' />
161 161 </service>
162 162 <service name='network/slp' version='1' type='service'>
163 163 <instance name='default' enabled='false' />
164 164 </service>
165 165 <service name='network/security/kadmin' version='1' type='service'>
166 166 <instance name='default' enabled='false' />
167 167 </service>
168 168 <service name='network/security/krb5_prop' version='1' type='service'>
169 169 <instance name='default' enabled='false' />
170 170 </service>
171 171 <service name='network/security/krb5kdc' version='1' type='service'>
172 172 <instance name='default' enabled='false' />
173 173 </service>
174 174
175 175 <service name='application/management/net-snmp' version='1' type='service'>
176 176 <instance name='default' enabled='false' />
177 177 </service>
178 178 <service name='application/management/seaport' version='1' type='service'>
179 179 <instance name='default' enabled='false' />
180 180 </service>
181 181 <service name='application/management/snmpdx' version='1' type='service'>
182 182 <instance name='default' enabled='false' />
183 183 </service>
184 184 <service name='application/management/wbem' version='1' type='service'>
185 185 <instance name='default' enabled='true' />
186 186 </service>
187 187 <service name='application/print/ipp-listener' version='1' type='service'>
188 188 <instance name='default' enabled='false' />
189 189 </service>
190 190 <service name='application/print/ppd-cache-update' version='1' type='service'>
191 191 <instance name='default' enabled='true' />
192 192 </service>
193 193 <service name='application/print/rfc1179' version='1' type='service'>
194 194 <instance name='default' enabled='false' />
195 195 </service>
196 196 <service name='application/cups/in-lpd' version='1' type='service'>
197 197 <instance name='default' enabled='false' />
198 198 </service>
199 199 <service name='application/stosreg' version='1' type='service'>
200 200 <instance name='default' enabled='true' />
201 201 </service>
202 202
203 203 <!--
204 204 default inetd(1M) services
205 205 -->
206 206 <service name='network/finger' version='1' type='service'>
207 207 <instance name='default' enabled='false'/>
208 208 </service>
209 209 <service name='network/login' version='1' type='service'>
210 210 <instance name='rlogin' enabled='false'/>
211 211 <instance name='klogin' enabled='false'/>
212 212 <instance name='eklogin' enabled='false'/>
213 213 </service>
214 214 <service name='network/shell' version='1' type='service'>
215 215 <instance name='default' enabled='false'/>
216 216 <instance name='kshell' enabled='false'/>
217 217 </service>
218 218 <service name='network/telnet' version='1' type='service'>
219 219 <instance name='default' enabled='false'/>
220 220 </service>
221 221
222 222 <!--
223 223 non-default inetd(1M) services
224 224 -->
225 225 <service name='network/uucp' version='1' type='service'>
226 226 <instance name='default' enabled='false'/>
227 227 </service>
228 228 <service name='network/chargen' version='1' type='service'>
229 229 <instance name='stream' enabled='false'/>
230 230 <instance name='dgram' enabled='false'/>
231 231 </service>
232 232 <service name='network/daytime' version='1' type='service'>
233 233 <instance name='stream' enabled='false'/>
234 234 <instance name='dgram' enabled='false'/>
235 235 </service>
236 236 <service name='network/discard' version='1' type='service'>
237 237 <instance name='stream' enabled='false'/>
238 238 <instance name='dgram' enabled='false'/>
239 239 </service>
240 240 <service name='network/echo' version='1' type='service'>
241 241 <instance name='stream' enabled='false'/>
242 242 <instance name='dgram' enabled='false'/>
243 243 </service>
244 244 <service name='network/time' version='1' type='service'>
245 245 <instance name='stream' enabled='false'/>
246 246 <instance name='dgram' enabled='false'/>
247 247 </service>
248 248 <service name='network/comsat' version='1' type='service'>
249 249 <instance name='default' enabled='false'/>
250 250 </service>
251 251 <service name='network/rexec' version='1' type='service'>
252 252 <instance name='default' enabled='false'/>
253 253 </service>
254 254 <service name='network/talk' version='1' type='service'>
255 255 <instance name='default' enabled='false'/>
256 256 </service>
257 257 <service name='network/stdiscover' version='1' type='service'>
258 258 <instance name='default' enabled='false'/>
259 259 </service>
|
↓ open down ↓ |
259 lines elided |
↑ open up ↑ |
260 260 <service name='network/stlisten' version='1' type='service'>
261 261 <instance name='default' enabled='false'/>
262 262 </service>
263 263
264 264 <!--
265 265 default inetd(1M) RPC services enabled
266 266 -->
267 267 <service name='network/rpc/gss' version='1' type='service'>
268 268 <instance name='default' enabled='true'/>
269 269 </service>
270 - <service name='network/rpc/mdcomm' version='1' type='service'>
271 - <instance name='default' enabled='false'/>
272 - </service>
273 270 <service name='network/rpc/smserver' version='1' type='service'>
274 271 <instance name='default' enabled='true'/>
275 272 </service>
276 273 <service name='network/security/ktkt_warn' version='1' type='service'>
277 274 <instance name='default' enabled='true'/>
278 275 </service>
279 276
280 - <!--
281 - default inetd(1M) RPC services disabled
282 - -->
283 - <service name='network/rpc/rstat' version='1' type='service'>
284 - <instance name='default' enabled='false'/>
285 - </service>
286 - <service name='network/rpc/rusers' version='1' type='service'>
287 - <instance name='default' enabled='false'/>
288 - </service>
289 -
290 - <!--
291 - non-default inetd(1M) RPC services disabled
292 - -->
293 - <service name='network/rpc/rex' version='1' type='service'>
294 - <instance name='default' enabled='false'/>
295 - </service>
296 - <service name='network/rpc/spray' version='1' type='service'>
297 - <instance name='default' enabled='false'/>
298 - </service>
299 - <service name='network/rpc/wall' version='1' type='service'>
300 - <instance name='default' enabled='false'/>
301 - </service>
302 277
303 278 <!--
304 279 Disable Avahi mDNS bridge service
305 280 -->
306 281 <service name='system/avahi-bridge-dsd' version='1' type='service'>
307 282 <instance name='default' enabled='false'/>
308 283 </service>
309 284
310 285 <!--
311 - Enable CDE/ToolTalk/GDM services.
286 + Enable gdm
312 287 -->
313 - <service name='network/rpc/cde-ttdbserver' version='1' type='service'>
314 - <instance name='tcp' enabled='true' />
315 - </service>
316 288 <service name='application/graphical-login/gdm' version='1'
317 289 type='service'>
318 290 <instance name='default' enabled='true' />
319 291 </service>
320 - <service name='network/rpc/cde-calendar-manager' version='1' type='service'>
321 - <instance name='default' enabled='true'/>
322 - </service>
323 292
324 293 <!--
325 294 Disable X11 services.
326 295 -->
327 296 <service name='application/x11/xfs' version='1' type='service'>
328 297 <instance name='default' enabled='false'/>
329 298 </service>
330 299
331 300 <!--
332 301 Enable VNC config service for xVM
333 302 -->
334 303 <service name='system/xvm/vnc-config' version='1' type='service'>
335 304 <instance name='default' enabled='true'/>
336 305 </service>
337 306
338 307 <service name='system/xvm/ipagent' version='1' type='service'>
339 308 <instance name='default' enabled='true'/>
340 309 </service>
341 310
342 311 </service_bundle>
XXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXXX