cpdchk - tcp wrapper configuration checker tcpdchk

petulia3478

TCPDCHK(1M)							   TCPDCHK(1M)



NAME
       tcpdchk - tcp wrapper configuration checker

SYNOPSYS
       tcpdchk [-a] [-d] [-i inet_conf]	[-v]

DESCRIPTION
       tcpdchk	examines your tcp wrapper configuration	and reports all	poten-
       tial and	real problems it can  find.  The  program  examines  the  tcpd
       access  control	files  (by  default,  these  are  /etc/hosts.allow and
       /etc/hosts.deny), and compares  the  entries  in	 these	files  against
       entries in the inetd network configuration files.

       tcpdchk	reports	problems such as non-existent pathnames; services that
       appear in tcpd access control rules, but	are not	 controlled  by	 tcpd;
       services	 that  should  not be wrapped; non-existent host names or non-
       internet	address	forms; occurrences of host aliases instead of official
       host  names;  hosts  with a name/address	conflict; inappropriate	use of
       wildcard	patterns; inappropriate	use of NIS netgroups or	references  to
       non-existent NIS	netgroups; references to non-existent options; invalid
       arguments to options; and so on.

       Where possible, tcpdchk provides	a helpful suggestion to	fix the	 prob-
       lem.

OPTIONS
       -a     Report  access  control  rules  that  permit  access  without an
	      explicit ALLOW keyword. This  applies  only  when	 the  extended
	      access   control	 language   is	 enabled  (build  with	-DPRO-
	      CESS_OPTIONS).

       -d     Examine hosts.allow and hosts.deny files in the  current	direc-
	      tory instead of the default ones.

       -i inet_conf
	      Specify  this  option  when  tcpdchk  is	unable	to  find  your
	      inetd.conf network configuration file, or	when you suspect  that
	      the program uses the wrong one.

       -v     Display the contents of each access control rule.	 Daemon	lists,
	      client lists, shell commands and options are shown in a  pretty-
	      printed  format;	this  makes it easier for you to spot any dis-
	      crepancies between what you want and  what  the  program	under-
	      stands.

FILES
       The default locations of	the tcpd access	control	tables are:

       /etc/hosts.allow
       /etc/hosts.deny

SEE ALSO
       tcpdmatch(1M), explain what tcpd	would do in specific cases.
       hosts_access(4),	format of the tcpd access control tables.
       hosts_options(4), format	of the language	extensions.
       inetd.conf(4), format of	the inetd control file.
       inetd(1M), how to invoke	tcpd from inetd	using the libwrap library.
       inetadm(1M), managing inetd services in the Service Management Framework.


AUTHORS
       Wietse Venema ([email protected]),
       Department of Mathematics and Computing Science,
       Eindhoven University of Technology
       Den Dolech 2, P.O. Box 513,
       5600 MB Eindhoven, The Netherlands


ATTRIBUTES
       See attributes(5) for descriptions of the following attributes:


       +--------------------+-----------------+
       |  ATTRIBUTE TYPE    | ATTRIBUTE	VALUE |
       +--------------------+-----------------+
       |Availability	    | SUNWtcpd	      |
       +--------------------+-----------------+
       |Interface Stability | Committed	      |
       +--------------------+-----------------+
NOTES
       Source for tcp_wrappers is available in the SUNWtcpdS package.



								   TCPDCHK(1M)