RE: Identification Protocol (was: Re: your mail)

To: "'debian-security@lists.debian.org'" <debian-security@lists.debian.org>
Subject: RE: Identification Protocol (was: Re: your mail)
From: Fredrik Liljegren <fredrik.liljegren@configura.com>
Date: Thu, 16 Mar 2000 16:41:51 +0100
Message-id: <[🔎] B519D0EAC5FFD211AD0D00902759B1032EFD22@RAGNAROK>

> irc server make ident connections to clients.
> squid can use ident for authorization.
> sendmail sometimes uses ident.
> 
> maybe you want to read rfc1413.
> 
> i'd turn auth off for security reasons if your box has a direct
> connection to internet.

Hmm, that's an easy approach, but from Security-HOWTO:

Many people misunderstand the usefulness of identd, and so disable it or
block all off site requests for it. identd is not there to help out remote
sites. There is no way of knowing if the data you get from the remote identd
is correct or not. There is no authentication in identd requests.

Why would you want to run it then? Because it helps you out, and is another
data-point in tracking.
-----

Well, the rest is to read there.. (part 8.4).  If you trust this writer,
there is no harm in having it going and it could be good..

Mvh EOF

Reply to:

Follow-Ups:
- RE: Identification Protocol (was: Re: your mail)
  - From: Sebastian Stark <stark@komcept.de>

Prev by Date: Identification Protocol (was: Re: your mail)
Next by Date: Re: your mail
Previous by thread: Re: your mail
Next by thread: RE: Identification Protocol (was: Re: your mail)
Index(es):
- Date
- Thread