[NTLUG:Discuss] strange behavior od xinetd
David Camm
dcamm at advwebsys.com
Fri Nov 29 10:47:57 CST 2002
we're running rh linux 7.2 on a webserver and using xinetd to manage
proftpd traffic (all other services are turned off).
on occasion, we get 'attacked' by random machines trying to connect
several times a second.
what happens is that xinetd recognizes the attack and shuts down ftp for
15 seconds (so says /var/log/secure), but for some reason, xinetd stops
taking service requests and must be manually restarted via
`/etc/r.cd/init.d/xinetd restart`.
here is xinetd.conf:
defaults
{
instances = 60
log_type = SYSLOG authpriv
log_on_success = HOST PID
log_on_failure = HOST
cps = 5 15
per_source = 4
}
includedir /etc/xinetd.d
the ftp service definition is straightforward and uses in.proftpd as the
server.
does any one have an idea of why this might be happening?
david camm
advanced web systems
www.advwebsys.com
More information about the Discuss
mailing list