On Thu, 16 Mar 2000, Fredrik Liljegren wrote: > > i'd turn auth off for security reasons if your box has a direct > > connection to internet. > Many people misunderstand the usefulness of identd, and so disable it or > block all off site requests for it. identd is not there to help out remote > sites. There is no way of knowing if the data you get from the remote identd > is correct or not. There is no authentication in identd requests.
maybe i am one of these people :) identd takes two parameters, the server and the source port of a tcp connection. it gives back the userid of the user who started it. am i right so far? i think, the userid may be useful for some purposes but in most cases it is not but gives a hacker a little piece of information. but, you're right, it could be worth while tracking down some attack from your own computer. hmm... i will think about it :-) thanks