#
# CDDL HEADER START
#
# The contents of this file are subject to the terms of the
# Common Development and Distribution License, Version 1.0 only
# (the "License").  You may not use this file except in compliance
# with the License.
#
# You can obtain a copy of the license at usr/src/OPENSOLARIS.LICENSE
# or http://www.opensolaris.org/os/licensing.
# See the License for the specific language governing permissions
# and limitations under the License.
#
# When distributing Covered Code, include this CDDL HEADER in each
# file and include the License file at usr/src/OPENSOLARIS.LICENSE.
# If applicable, add the following below this CDDL HEADER, with the
# fields enclosed by brackets "[]" replaced with your own identifying
# information: Portions Copyright [yyyy] [name of copyright owner]
#
# CDDL HEADER END
#
#
# Copyright 2004 Sun Microsystems, Inc.  All rights reserved.
# Use is subject to license terms.
#

#pragma ident	"%Z%%M%	%I%	%E% SMI"

	Notes Regarding Modification of generic_open.xml

Any changes made to generic_open.xml will need to be considered for
inclusion in generic_limited_net.xml, the "Secure By Default" (see
http://solsec.eng.sun.com/sbd/) profile.  The details are discussed
in PSARC/2004/781:

	...
	The generic_limited_net profile explicitly disables all
	smf(5) converted inetd services that are not required to
	run the window system, SVM, or vold.  It retains ssh and
	X remote login as the remote login methods available.
	...

In general, _any_ service that allows inbound net access should be
added to generic_limited_net and disabled, unless its activation
has been:approved by SBD.