# See http://ds1.internic.net/rfc/rfc2200.txt, rfc1700.txt
# ftp://ftp.isi.edu/in-notes/iana/assignments
# /etc/services, /etc/inetd.conf

Service	port	proto	owner	daemon		launch	RFC	what
echo	7	tcp	root			inetd	862	echo packets received
echo	7	udp	root			inetd	862
discard	9	tcp	root			inetd	863	discard packets received
discard	9	udp	root			inetd	863
daytime	13	tcp	root			inetd	867	date & time in ASCII
daytime	13	udp	root			inetd	867
qotd	17	tcp					865	Quote of the Day ( <= 512 char)
chargen	19	tcp	root			inetd	864	Character Generator (cont. stream)
chargen	19	udp	root			inetd	864	Character Generator
  chargen given as http port in URL may crash client's browser
ftp-data 20	tcp						File Transfer [Default Data]   
ftp	21	tcp	root	in.ftpd		inetd	959	File Transfer [Control]
  password in clear subject to sniffing on insecure ethernet
  misconfigured anonymous ftp allows arbitrary commands to be executed using .forward file
ssh	22	tcp	root	sshd		init.d		Secure Shell
telnet	23	tcp 	root    in.telnetd	inetd	854	Network Virtual Terminal
  password in clear subject to sniffing on insecure ethernet
gopher	70	tcp 	root    gn		inetd	1436	Internet Gopher Protocol

smtp	25	tcp 	root	sendmail	init.d	821	Simple Mail Transfer
  sendmail may allow junk mail relaying, or execution of arbitrary commands via uudecode
nntp	119	tcp	root	in.nntpd	inetd	977	Network News Transfer

shell	514	tcp	root	in.rshd		inetd		BSD rshd(8)
  allows command execution without password from trusted hosts
login	513	tcp	root	in.rlogind	inetd		BSD rlogind(8)
  allows login  without password from trusted hosts
exec	512	tcp	root	in.rexecd	inetd		BSD rexecd(8)
  
talk	517	udp	root	in.talkd	inetd		BSD talkd(8)
ntalk	518	udp	root	in.ntalkd	inetd		SunOS talkd(8)
dtalk		tcp	nobody	in.dtalkd
#
# Pop and imap mail services et al
#
pop-2   109	tcp	root    ipop2d		inetd	937	PostOffice V.2
pop-3   110	tcp	root	ipop3d		inetd	2095	PostOffice V.3
  password in clear subject to sniffing on insecure ethernet
imap2	143	tcp     root    imapd		inetd	1203	Interim Mail Access Protocol v2
  password in clear subject to sniffing on insecure ethernet
  some versions have notorious buffer-overrun hole
#
uucp	540	tcp	uucp	uucico		inetd		BSD uucpd(8)
#
tftp	69	udp	root	in.tftpd	inetd	1350	Trivial File Transfer
  exports files without authentication, usually linited to /tftpboot directory
bootps	67	udp	root	bootpd		inetd	2132	bootp server  
  bootp may reveal yp domain name
#
#
finger	79	tcp	root	in.fingerd	inetd	1288	Finger
  without -u flag, gives out list of all users. Gives email forwarding and logon host
cfinger 2003	tcp	root	in.cfingerd	inetd		Gnu finger
systat	11	tcp	guest	/bin/ps	-auwwx	inetd		Active Users
  shows usernames and active processes
netstat	15	tcp	guest	/bin/netstat	inetd		Remote network stats
  shows active network connections
#
# Time service is used for clock syncronization.
#
time	37	tcp	nobody	in.timed	inetd	868	Time Protocol - send & receive secs since 1900 
time	37	udp	nobody	in.timed	inetd
#
# Authentication
#
auth   113	tcp	nobody	in.identd 	inetd	1413	Authentication

# Things not in inetd.conf

http	80	tcp	nobody	httpd		init.d	1945	HTTP Web server
  badly written CGI scripts such as phf may allow arbitrary commands to be executed by the server
printer	515	tcp	root	lpd.init	init.d	1179
# mars_nwe NetWare emulator

netbios-ns 137	tcp	root	nmbd		init.d	1001	NETBIOS Name Service
netbios-ssn 139	tcp	root	smbd		init.d		NETBIOS Session Service
  smb allows filesystem access to Windows platforms. Some versions may have buffer overrun hole.
sunrpc	111	tcp	bin	portmap		init.d		Portmapper
mount	635	udp		rpc.nfsd	init.d	1813	NFS daemon
nfs	2049	udp						NFS file service
  world-writable NFS exports may allow .rhosts files to be written; world-readable /
  may allow password file to be read.
snmp	161	udp		snmpd		init.d	1157	Network Management
				rpc.yppasswd	init.d		Sun NIS (yellowpages)
  password file may be read if yp domain is guessed
				ypserv		init.d		Sun NIS
  arbitrary commands may executed by manipulating aliases database
who	513	udp		whod			954	BSD rwho
kerberos 88	udp		kdc			1510	Kerberos authentication
	3128	tcp		squid		init.d		HTTP proxy cache
  HTTP proxy may defeat domain-based access control
icp	3130	tcp		squid		init.d		ICP for proxy cache
	3131	tcp		squid				Squid announcements
X11	6000	tcp		X				X11 server
  without access control arbitrary host may start login spoof or monitor keystrokes
	5996	tcp		filed				NCD file daemon
	5997	tcp		configd				NCD config daemon
	5998	tcp		diagd				NCD diagnostic port- messages
  gives names of trusted hosts
	5999	tcp		configd				NCD diagnostics
	514	tcp		execd				NCD remote execution
  telnet proxy may bypass domain-based access control
  DNS manipulation may allow login spoof or denial of service