Difference between revisions of "TCP Wrappers"

From CBLFS
Jump to navigationJump to search
(I added the package description from BLFS.)
(I added the "Contents" section from BLFS.)
Line 28: Line 28:
  
 
  make install
 
  make install
 +
 +
=== Command Explanations ===
 +
 +
'''sed -i -e ... scaffold.c''': This command removes an obsolete C declaration which causes the build to fail if using GCC >= 3.4.x.
  
 
== Multilib ==
 
== Multilib ==
Line 68: Line 72:
  
 
  make install
 
  make install
 +
 +
= Contents =
 +
 +
{| style="text-align: left;"
 +
|-valign="top"
 +
! Installed Programs:
 +
| tcpd, tcpdchk, tcpdmatch, try-from, and safe_finger
 +
|-valign="top"
 +
! Installed Libraries:
 +
| libwrap.{so,a}
 +
|-valign="top"
 +
! Installed Directories:
 +
| None
 +
|}
 +
 +
=== Short Descriptions ===
 +
 +
{| style="text-align: left;"
 +
|-valign="top"
 +
! tcpd
 +
| is the main access control daemon for all Internet services, which '''inetd''' or '''xinetd''' will run instead of running the requested service daemon.
 +
|-valign="top"
 +
! tcpdchk
 +
| is a tool to examine a '''tcpd''' wrapper configuration and report problems with it.
 +
|-valign="top"
 +
! tcpdmatch
 +
| is used to predict how the TCP wrapper would handle a specific request for a service.
 +
|-valign="top"
 +
! try-from
 +
| can be called via a remote shell command to find out if the host name and address are properly recognized.
 +
|-valign="top"
 +
! safe_finger
 +
| is a wrapper for the '''finger''' utility, to provide automatic reverse name lookups.
 +
|-valign="top"
 +
! libwrap.{so,a}
 +
| contains the API functions required by the TCP Wrapper programs as well as other programs to become “TCP Wrapper-aware”.
 +
|}

Revision as of 21:25, 9 December 2006

Download Source: ftp://ftp.porcupine.org/pub/security/tcp_wrappers_7.6.tar.gz
Download Patch: http://svn.cross-lfs.org/svn/repos/patches/tcp_wrappers/tcp_wrappers-7.6-shared_lib_plus_plus-1.patch

Introduction to TCP Wrappers

The TCP Wrappers package provides daemon wrapper programs that report the name of the client requesting network services and the requested service.

Dependencies

Non-Multilib

Configure and compile the package:

patch -Np1 -i ../tcp_wrappers-7.6-shared_lib_plus_plus-1.patch &&
sed -i "s,^extern char \*malloc();,/* & */," scaffold.c &&
make REAL_DAEMON_DIR=/usr/sbin STYLE=-DPROCESS_OPTIONS linux 

Install the package:

make install

Command Explanations

sed -i -e ... scaffold.c: This command removes an obsolete C declaration which causes the build to fail if using GCC >= 3.4.x.

Multilib

32Bit

Configure and compile the package:

patch -Np1 -i ../tcp_wrappers-7.6-shared_lib_plus_plus-1.patch &&
sed -i "s,^extern char \*malloc();,/* & */," scaffold.c &&
make CC="gcc ${BUILD32}" REAL_DAEMON_DIR=/usr/sbin STYLE=-DPROCESS_OPTIONS linux 

Install the package:

make install

N32

Configure and compile the package:

patch -Np1 -i ../tcp_wrappers-7.6-shared_lib_plus_plus-1.patch &&
sed -i "s,^extern char \*malloc();,/* & */," scaffold.c &&
sed -i -e "s@/lib/@/lib32/@g" Makefile &&
make CC="gcc ${BUILDN32}" REAL_DAEMON_DIR=/usr/sbin STYLE=-DPROCESS_OPTIONS linux 

Install the package:

make install

64Bit

Configure and compile the package:

patch -Np1 -i ../tcp_wrappers-7.6-shared_lib_plus_plus-1.patch &&
sed -i "s,^extern char \*malloc();,/* & */," scaffold.c &&
sed -i -e "s@/lib/@/lib64/@g" Makefile &&
make CC="gcc ${BUILD64}" REAL_DAEMON_DIR=/usr/sbin STYLE=-DPROCESS_OPTIONS linux 

Install the package:

make install

Contents

Installed Programs: tcpd, tcpdchk, tcpdmatch, try-from, and safe_finger
Installed Libraries: libwrap.{so,a}
Installed Directories: None

Short Descriptions

tcpd is the main access control daemon for all Internet services, which inetd or xinetd will run instead of running the requested service daemon.
tcpdchk is a tool to examine a tcpd wrapper configuration and report problems with it.
tcpdmatch is used to predict how the TCP wrapper would handle a specific request for a service.
try-from can be called via a remote shell command to find out if the host name and address are properly recognized.
safe_finger is a wrapper for the finger utility, to provide automatic reverse name lookups.
libwrap.{so,a} contains the API functions required by the TCP Wrapper programs as well as other programs to become “TCP Wrapper-aware”.