Re: identd + SOCKS
On Wed, Jan 10, 2001 at 09:00:06AM -0700, John Gonzalez/netMDC admin wrote: > On Wed, 10 Jan 2001, Marcin Owsiany wrote: > | Will the identd daemon somehow communicate with the bounce > | proxy so that it will return an IP or a hostname of the client > | using the proxy? > > You can run more then one user off the bounce program. It also has > "fake" ident support, which will probably do what you want. Unfortunately it's not what i want. I am using random ident responses now, but I would like the IRC admins to be able to identify a client. Say they ban a user, she will then reconnect and get a different ident :-\ I want to enforce some level of responsibility... > At the very least, if all else fails, you can have multiple installations > running under multiple usernames... but it shouldnt come to that. And that would be nasty, because each client would have to remember his own port number :-( regards Marcin -- Marcin Owsiany <[EMAIL PROTECTED]> http://student.uci.agh.edu.pl/~porridge/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: identd + SOCKS
On Wed, 10 Jan 2001, Marcin Owsiany wrote: | Hmm.. this is worth a look, then. I had thought that such | programs are designed for one person, i.e. installation on a | user's account. | | Will the identd daemon somehow communicate with the bounce | proxy so that it will return an IP or a hostname of the client | using the proxy? You can run more then one user off the bounce program. It also has "fake" ident support, which will probably do what you want. At the very least, if all else fails, you can have multiple installations running under multiple usernames... but it shouldnt come to that. -- John Gonzalez / [EMAIL PROTECTED] / [EMAIL PROTECTED] Tularosa Communications, Inc. (505) 439-0200 voice / (505) 443-1228 fax http://www.tularosa.net / ASN 11711 / JG6416 [--[ sys info ]---] 8:55am up 125 days, 15:24, 4 users, load average: 0.35, 0.28, 0.24 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: identd + SOCKS
On Wed, Jan 10, 2001 at 08:31:58AM +0100, Christofer Algotsson wrote: > On Tue, Jan 09, 2001 at 12:59:22PM -0700, John Gonzalez/netMDC admin wrote: > > Your customers connect to the bounce box, which is running the > > daemon. This box allows them access to the outside world, bouncing the IRC > > connection. The box itself runs an identd daemon, and the bounce > > daemon. Hmm.. this is worth a look, then. I had thought that such programs are designed for one person, i.e. installation on a user's account. Will the identd daemon somehow communicate with the bounce proxy so that it will return an IP or a hostname of the client using the proxy? > In this case i would run midentd on the socks-server, a ident-daemon > with masq support(IPadress based). But I do not want to masquerade the clients' network, and using midentd would require that, right? regards Marcin -- Marcin Owsiany <[EMAIL PROTECTED]> http://student.uci.agh.edu.pl/~porridge/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: identd + SOCKS
On Tue, Jan 09, 2001 at 12:59:22PM -0700, John Gonzalez/netMDC admin wrote: > On Tue, 9 Jan 2001, Marcin Owsiany wrote: > > | > There exists many irc "bounce" programs that may accomplish what you > | > need. Such as ezbounce, bnc, etc. > | > | But do they work with ident? Unfortunately running such a > | bounce program for each of the client box is not an option for > | me. > | > | regards, > | > | Marcin > > No, perhaps you should read how the bounce programs, to get a better idea > of how they work. I envision this setup doing what you need: > > Your "bounce" server has a secured LAN side, and an unfiltered (ie, not > behind the SOCKS/proxy) server side. > > You run bnc or ezbounce on this box. > > Your customers connect to the bounce box, which is running the > daemon. This box allows them access to the outside world, bouncing the IRC > connection. The box itself runs an identd daemon, and the bounce > daemon. Your regular users run any IRC program they wish, such as MIRC, > etc. > In this case i would run midentd on the socks-server, a ident-daemon with masq support(IPadress based). Depending on what IP the client sits on, behind the socks-server, it will give the IRC-daemon the correct *!USER@, i.e ident reply. say the client sits on a non-routeable network such as 192.168.1.0/24 and the IP is 192.168.1.10, 192.168.1.11. the midentd.conf would look like this: 192.168.1.10UNIXjohn 192.168.1.11UNIXmike ... hope this helps. -- Christofer, -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: identd + SOCKS
On Tue, 9 Jan 2001, Marcin Owsiany wrote: | > There exists many irc "bounce" programs that may accomplish what you | > need. Such as ezbounce, bnc, etc. | | But do they work with ident? Unfortunately running such a | bounce program for each of the client box is not an option for | me. | | regards, | | Marcin No, perhaps you should read how the bounce programs, to get a better idea of how they work. I envision this setup doing what you need: Your "bounce" server has a secured LAN side, and an unfiltered (ie, not behind the SOCKS/proxy) server side. You run bnc or ezbounce on this box. Your customers connect to the bounce box, which is running the daemon. This box allows them access to the outside world, bouncing the IRC connection. The box itself runs an identd daemon, and the bounce daemon. Your regular users run any IRC program they wish, such as MIRC, etc. -- John Gonzalez / [EMAIL PROTECTED] / [EMAIL PROTECTED] Tularosa Communications, Inc. (505) 439-0200 voice / (505) 443-1228 fax http://www.tularosa.net / ASN 11711 / JG6416 [--[ sys info ]---] 12:55pm up 124 days, 19:24, 4 users, load average: 0.06, 0.28, 0.33 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: identd + SOCKS
On Tue, Jan 09, 2001 at 12:41:03PM -0700, John Gonzalez/netMDC admin wrote: > On Tue, 9 Jan 2001, Marcin Owsiany wrote: > > | Too bad. Looks like i'll need to do some coding, unless there > | exists something I could use instead of SOCKS, like an IRC > | proxy with an builtin ident server? > > There exists many irc "bounce" programs that may accomplish what you > need. Such as ezbounce, bnc, etc. But do they work with ident? Unfortunately running such a bounce program for each of the client box is not an option for me. regards, Marcin -- Marcin Owsiany <[EMAIL PROTECTED]> http://student.uci.agh.edu.pl/~porridge/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: identd + SOCKS
On Tue, 9 Jan 2001, Marcin Owsiany wrote: | Too bad. Looks like i'll need to do some coding, unless there | exists something I could use instead of SOCKS, like an IRC | proxy with an builtin ident server? | | thanks, | | Marcin There exists many irc "bounce" programs that may accomplish what you need. Such as ezbounce, bnc, etc. -- John Gonzalez / [EMAIL PROTECTED] / [EMAIL PROTECTED] Tularosa Communications, Inc. (505) 439-0200 voice / (505) 443-1228 fax http://www.tularosa.net / ASN 11711 / JG6416 [--[ sys info ]---] 12:40pm up 124 days, 19:09, 4 users, load average: 0.64, 0.39, 0.34 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: identd + SOCKS
On Tue, Jan 09, 2001 at 08:07:28PM +0100, Nicolas Bougues wrote: > On Tue, Jan 09, 2001 at 07:59:10PM +0100, Marcin Owsiany wrote: > This would require some kind of cooperation between the SOCKS proxy (which > knows the real identity of the IRC client) and the identd (which gets > queried back on a a different connection by the IRC server). I thought so as well. > I've never seen any such thing. Too bad. Looks like i'll need to do some coding, unless there exists something I could use instead of SOCKS, like an IRC proxy with an builtin ident server? thanks, Marcin -- Marcin Owsiany <[EMAIL PROTECTED]> http://student.uci.agh.edu.pl/~porridge/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
Re: identd + SOCKS
Hello, On Tue, Jan 09, 2001 at 07:59:10PM +0100, Marcin Owsiany wrote: > Hi! > > First, some ascii "art": > > - -- > ||| SOCKS proxy | | IRC| > | IRC client || and |--/ /---| server | > ||| identd| | | > - -- > > Does anyone know a solution that would allow the IRC server to > get an ident reply of the client's IP number instead of the > SOCKS server username, when the client connects via the SOCKS > server? > This would require some kind of cooperation between the SOCKS proxy (which knows the real identity of the IRC client) and the identd (which gets queried back on a a different connection by the IRC server). I've never seen any such thing. -- Nicolas BOUGUES -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
identd + SOCKS
Hi! First, some ascii "art": - -- ||| SOCKS proxy | | IRC| | IRC client || and |--/ /---| server | ||| identd| | | - -- Does anyone know a solution that would allow the IRC server to get an ident reply of the client's IP number instead of the SOCKS server username, when the client connects via the SOCKS server? thanks in advance Marcin -- Marcin Owsiany <[EMAIL PROTECTED]> http://student.uci.agh.edu.pl/~porridge/ GnuPG: 1024D/60F41216 FE67 DA2D 0ACA FC5E 3F75 D6F6 3A0D 8AA0 60F4 1216 -- To UNSUBSCRIBE, email to [EMAIL PROTECTED] with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]