On Sat, 10 Jul 1999 15:57:21 EST, Chris Costello wrote:
> The whole point of ident was -- and still is -- to
> authenticate or verify who created a specific TCP connection.
Crhis, as Warner's already pointed out, you're wrong. :-)
Ident's intended purpose is for me to give you something to report back
to me when you think someone on my box is screwing around. Ident
responses are not useful to anyone but the owner of the box issuing
them, and even then they're only useful until the box is penetrated.
This is all silliness. The service has a place, it's just mostly
misunderstood, and none of this has anything to do with Brian Feldman's
original mail.
I _will_ have a problem with anyone changing inetd to provide real
usernames in response to auth (ident) service requests, where it did not
do so before. I don't have a problem with inetd being _able_ to do so if
it's given some extra option, so long as that doesn't become a new
default for existing configurations.
Ciao,
Sheldon.
To Unsubscribe: send mail to [EMAIL PROTECTED]
with "unsubscribe freebsd-hackers" in the body of the message
