How to Build, Install, Secure & Optimize Xinetd
But wait, Xinetd is NOT efficient or adequate for all services, especially for services like FTP and SSH. It is far better to run these services as standalone daemons (if possible). Loading services like FTP or SSH, as standalone daemons will eliminate load time and will even reduce swapping since non-library code will be shared. Also, most services that required the super-servers to run have now very good access control mechanisms; therefore, don't think that if you run these services through Xinetd you will necessarily gain additional security.
A few security features of Xinetd are:
- Provides access control mechanisms.
- Prevents denial of service attacks.
- Extensive logging abilities.
- Offloads services to a remote host.
- Make services available based on time.
- Limits on the number of servers that can be started.
- IPv6 support.
The link for this article located at Gerhard Mourani / OpenNA is no longer available.