RE: the UNIX xinetd test. It appears some linux variants recently have a new 'type' for their services. Current OVAL schema allow for xinetd state and item 'types' of: - INTERNAL - RPC - UNLISTED - TCPMUX - TCPMUXPLUS Later versions of openSUSE and maybe others also report a type of 'INTERNAL UNLISTED.' Suggest we add 'INTERNAL UNLISTED' to list of valid 'type' values for xinetd state and item. ----------------------------------------- John R. Ulmer SPAWAR Systems Center Atlantic john.r.ulmer6.civ@mail.mil 843.218.5953

Hi John, The 5.11.2 schema allows multiple (unbounded) xinetd_item/type entities, meaning that enumerating both INTERNAL and UNLISTED types for an xinetd service is currently possible. I believe that’s how this situation is intended to be handled. IIRC, this was discussed… somewhere (perhaps on this very list?) Best regards, —David Solin David A. Solin Co-Founder, Research & Technology solin@jovalcm.com <mailto:solin@jovalcm.com> <https://protect-us.mimecast.com/s/X8d4B3Ia1kwHz?domain=jovalcm.com>   <https://protect-us.mimecast.com/s/7GXMBYfGE4WFM?domain=facebook.com> <https://protect-us.mimecast.com/s/EJReB8u048QUX?domain=linkedin.com> > On Oct 24, 2017, at 2:05 PM, Ulmer, John R CIV USN SPAWARSYSCEN LANT SC (US) <john.r.ulmer6.civ@mail.mil> wrote: > > RE: the UNIX xinetd test. > > It appears some linux variants recently have a new 'type' for their services. Current OVAL schema allow for xinetd state and item 'types' of: > - INTERNAL > - RPC > - UNLISTED > - TCPMUX > - TCPMUXPLUS > > Later versions of openSUSE and maybe others also report a type of 'INTERNAL UNLISTED.' > > Suggest we add 'INTERNAL UNLISTED' to list of valid 'type' values for xinetd state and item. > > ----------------------------------------- > John R. Ulmer > SPAWAR Systems Center Atlantic > john.r.ulmer6.civ@mail.mil > 843.218.5953 > > > _______________________________________________ > OVAL_Developer mailing list > OVAL_Developer@lists.cisecurity.org > http://lists.cisecurity.org/mailman/listinfo/oval_developer_lists.cisecurity.org