On 10/06/2004, at 8:39 AM, mail wrote:
Hi,
I installed the APF firewall on my linuxbox a few days ago and have log files full TCP DROP messages caused by courier outgoing (and some incoming) activity on port 113.
What is this for? Is it needed? Can I turn this off? Or should I open port 113?
Port 113 is identd - it is supposed to identify the user who opened the connection on the specified port. MTAs frequently check this and add it to the Received: headers as part of the audit trail. You should either allow these connections and make sure identd is running, or reject them. Silently dropping causes delays. I use iptables and REJECT them, as I don't have an identd. One day I might install one, but it's not that important.
-- Phillip Hutchings [EMAIL PROTECTED] http://www.sitharus.com/
smime.p7s
Description: S/MIME cryptographic signature
