TCP Wrappers

From CBLFS
Revision as of 21:25, 9 December 2006 by Kalessin (talk | contribs) (I added the "Contents" section from BLFS.)
Jump to navigationJump to search
Download Source: ftp://ftp.porcupine.org/pub/security/tcp_wrappers_7.6.tar.gz
Download Patch: http://svn.cross-lfs.org/svn/repos/patches/tcp_wrappers/tcp_wrappers-7.6-shared_lib_plus_plus-1.patch

Introduction to TCP Wrappers

The TCP Wrappers package provides daemon wrapper programs that report the name of the client requesting network services and the requested service.

Dependencies

Non-Multilib

Configure and compile the package:

patch -Np1 -i ../tcp_wrappers-7.6-shared_lib_plus_plus-1.patch &&
sed -i "s,^extern char \*malloc();,/* & */," scaffold.c &&
make REAL_DAEMON_DIR=/usr/sbin STYLE=-DPROCESS_OPTIONS linux 

Install the package:

make install

Command Explanations

sed -i -e ... scaffold.c: This command removes an obsolete C declaration which causes the build to fail if using GCC >= 3.4.x.

Multilib

32Bit

Configure and compile the package:

patch -Np1 -i ../tcp_wrappers-7.6-shared_lib_plus_plus-1.patch &&
sed -i "s,^extern char \*malloc();,/* & */," scaffold.c &&
make CC="gcc ${BUILD32}" REAL_DAEMON_DIR=/usr/sbin STYLE=-DPROCESS_OPTIONS linux 

Install the package:

make install

N32

Configure and compile the package:

patch -Np1 -i ../tcp_wrappers-7.6-shared_lib_plus_plus-1.patch &&
sed -i "s,^extern char \*malloc();,/* & */," scaffold.c &&
sed -i -e "s@/lib/@/lib32/@g" Makefile &&
make CC="gcc ${BUILDN32}" REAL_DAEMON_DIR=/usr/sbin STYLE=-DPROCESS_OPTIONS linux 

Install the package:

make install

64Bit

Configure and compile the package:

patch -Np1 -i ../tcp_wrappers-7.6-shared_lib_plus_plus-1.patch &&
sed -i "s,^extern char \*malloc();,/* & */," scaffold.c &&
sed -i -e "s@/lib/@/lib64/@g" Makefile &&
make CC="gcc ${BUILD64}" REAL_DAEMON_DIR=/usr/sbin STYLE=-DPROCESS_OPTIONS linux 

Install the package:

make install

Contents

Installed Programs: tcpd, tcpdchk, tcpdmatch, try-from, and safe_finger
Installed Libraries: libwrap.{so,a}
Installed Directories: None

Short Descriptions

tcpd is the main access control daemon for all Internet services, which inetd or xinetd will run instead of running the requested service daemon.
tcpdchk is a tool to examine a tcpd wrapper configuration and report problems with it.
tcpdmatch is used to predict how the TCP wrapper would handle a specific request for a service.
try-from can be called via a remote shell command to find out if the host name and address are properly recognized.
safe_finger is a wrapper for the finger utility, to provide automatic reverse name lookups.
libwrap.{so,a} contains the API functions required by the TCP Wrapper programs as well as other programs to become “TCP Wrapper-aware”.