Re: What to return for AUTH tcp/113 requests?

To: "debian-firewall@lists.debian.org" <debian-firewall@lists.debian.org>
Subject: Re: What to return for AUTH tcp/113 requests?
From: "Ralf G. R. Bergs" <rabe@RWTH-Aachen.DE>
Date: Thu, 29 May 2003 16:32:03 +0200
Message-id: <[🔎] 19LORn-0003NC-5A@ADSL-Bergs.RZ.RWTH-Aachen.DE>
In-reply-to: <[🔎] 20030529135952.GA1952@gnuhead>

On Thu, 29 May 2003 19:29:52 +0530, Raghavendra Bhat wrote:

>moseley posts:
>
>>> it's not  good to just  drop the auth  (ident) requests --  IIRC it
>>> makes mail clients delay.
>>>
>>> the question is how should they be rejected?
>
>I dunno  why you say  that a drop  makes the client delay.   Maybe you
>should ULDROP  it and log the  ident/whatever request on  a port using
>ulogd.

Dropping the request in fact DOES make the client wait until it gets a timeout.

One should REJECT the request instead, probably using "port unreachable."


-- 
   L I N U X       .~.
  The  Choice      /V\
   of a  GNU      /( )\
  Generation      ^^-^^

Reply to:

References:
- Re: What to return for AUTH tcp/113 requests?
  - From: Raghavendra Bhat <ragu@asianetonline.net>

Prev by Date: Re: What to return for AUTH tcp/113 requests?
Next by Date: Re: What to return for AUTH tcp/113 requests?
Previous by thread: Re: What to return for AUTH tcp/113 requests?
Next by thread: Re: What to return for AUTH tcp/113 requests?
Index(es):
- Date
- Thread