The software described in this documentation is either in Extended Support or Sustaining Support. See https://www.oracle.com/us/support/library/enterprise-linux-support-policies-069172.pdf for more information.
Oracle recommends that you upgrade the software described by this documentation as soon as possible.
It is recommended that you do not install the
xinetd
Internet listener daemon. If you do
not need this service, remove the package altogether by using
the yum remove xinetd command.
If you must enable xinetd
on your system,
minimize the network services that xinetd
can
launch by disabling those services that are defined in the
configuration files in /etc/xinetd.d
and
which are not needed.
To counter potential Denial of Service (DoS) attacks, you can
configure the resource limits for such services by editing
/etc/xinetd.conf
and related configuration
files. For example, you can set limits for the connection rate,
the number of connection instances to a service, and the number
of connections from an IP address:
# Maximum number of connections per second and # number of seconds for which a service is disabled # if the maximum number of connections is exceeded cps = 50 10 # Maximum number of connections to a service instances = 50 # Maximum number of connections from an IP address per_source = 10
For more information, see the xinetd(8)
and
/etc/xinetd.conf(5)
manual pages.