At 1:58 AM -0500 11/26/00, Phil Barnett wrote:
>On 26 Nov 2000, at 1:34, Romeyn Prescott wrote:
>
>> At 12:26 AM -0500 11/26/00, Phil Barnett wrote:
>> >Does qmail require identd to be running to operate properly?
>
>> No, you can, per the docs, use tc
>Does qmail require identd to be running to operate properly?
No. The only component in a qmail setup that involves identd is
tcpserver (if you're using it), which does ident lookups by default.
Turn this behaviour off by using the -R option to tcpserver. See
the tcpserver man page
On 26 Nov 2000, at 1:34, Romeyn Prescott wrote:
> At 12:26 AM -0500 11/26/00, Phil Barnett wrote:
> >Does qmail require identd to be running to operate properly?
> No, you can, per the docs, use tcpserver, tcpd, or xinetd as an
> alternative.
I was referring to id
On Sun, Nov 26, 2000 at 12:26:05AM -0500, Phil Barnett wrote:
> Does qmail require identd to be running to operate properly?
It doesn't *require* identd. However tcpserver attempts an identd
lookup on each incoming connection. If the lookup times out, it carries
on normally.
Wai
No, you can, per the docs, use tcpserver, tcpd, or xinetd as an alternative.
...ROMeyn
At 12:26 AM -0500 11/26/00, Phil Barnett wrote:
>Does qmail require identd to be running to operate properly?
>
>
>--
> Phil Barnett mailto:[EMAIL PROTECTED]
>
Does qmail require identd to be running to operate properly?
--
Phil Barnett mailto:[EMAIL PROTECTED]
WWW http://www.the-oasis.net/
FTP Site ftp://ftp.the-oasis.net
==
> -Original Message-
> From: John Conover [mailto:[EMAIL PROTECTED]]
> Sent: Saturday, September 30, 2000 9:33 PM
> To: [EMAIL PROTECTED]
> Subject: identd/auth
>
>
> Do mail servers use/require identd/auth? Is it perm
Do mail servers use/require identd/auth? Is it permissible to
turn it off?
Thanks,
John
--
John ConoverTel. 408.370.2688 [EMAIL PROTECTED]
631 Lamont Ct. Cel. 408.772.7733 http://www.johncon.com/
Campbell, CA 95008 Fax. 408.379.9602
Peter van Dijk <[EMAIL PROTECTED]> writes:
> One thing that *is* wise is to make sure that if you don't run
> auth/ident, make sure traffic to port 113 is visibly rejected and not
> just dropped. Dropping it will cause timeout hell to be spawned upon
> you.
and preferably with a proper TCP Reset,
On Thu, Aug 17, 2000 at 11:35:51AM -0400, Greg Owen wrote:
> If you don't run it, that is one less service you have to worry
> about the security of (read, the possibility of buffer overflows).
Under Linux and BSD, you can run identd as ``nobody'' (or any other
> Is it wise to run auth/identd on an email gateway?
If you do run it, then you don't have to worry about delays or time
penalties when doing mail transactions with other servers that do ident
lookups.
If you don't run it, that is one less service you have to wo
On Thu, Aug 17, 2000 at 04:58:43PM +1200, Chris, the Young One wrote:
> In-Reply-To: <[EMAIL PROTECTED]>
> Mail-Reply-To: [EMAIL PROTECTED]
>
> On Wed, Aug 16, 2000 at 07:55:22PM -, John Conover wrote:
> > Is it wise to run auth/identd on an email gateway?
>
&
In-Reply-To: <[EMAIL PROTECTED]>
Mail-Reply-To: [EMAIL PROTECTED]
On Wed, Aug 16, 2000 at 07:55:22PM -, John Conover wrote:
> Is it wise to run auth/identd on an email gateway?
It's up to you. Since your gateway software probably always runs as the
same user, the ident conveys
Is it wise to run auth/identd on an email gateway?
Thanks,
John
--
John ConoverTel. 408.370.2688 [EMAIL PROTECTED]
631 Lamont Ct. Cel. 408.772.7733
Campbell, CA 95008 Fax. 408.379.9602 http://www.johncon.com
Enrique Vadillo <[EMAIL PROTECTED]> writes on 21 July 2000 at 22:21:38 -0500
> Is there a config somewhere so i can decrease identd timeout to something
> less than 30 seconds? my qmail server is attempting to connect to identd
> ports of every remote host that opens a port 25 c
On Fri, Jul 21, 2000 at 10:21:38PM -0500, Enrique Vadillo wrote:
! I can of course change the source code: (line 46 of tcp-env.c):
!
! timeout = 30;
If you're playing with tcp-env, the man page says there's a switch
called -t which seems to do what you want; check it out.
---Chris K.
--
From: Enrique Vadillo <[EMAIL PROTECTED]>
>Is there a config somewhere so i can decrease identd timeout to something
>less than 30 seconds? my qmail server is attempting to connect to identd
>ports of every remote host that opens a port 25 connection to it, and
>frequently thes
Is there a config somewhere so i can decrease identd timeout to something
less than 30 seconds? my qmail server is attempting to connect to identd
ports of every remote host that opens a port 25 connection to it, and
frequently these hosts are behind firewalls blocking identd ports (tcp/113).
I
Greg,
I have never run identd on my qmail server, and
I've never had any problems. We're using a P75 with
32MB.
I don't think it's anything to worry about. In fact,
I drop any packets coming in on port 113 (identd).
Just my .02.
Steve
--- Greg Cope <[EMAIL PROTEC
a DOS via Identd to me
Is not running identd (its run as a daemon from /etc/rc.d/) for a smtp
box going to cause problems ?
Has anyone else seen such issues on a low memory qmail server / redhat
6.2 box ?
I have no other problems with other redhat / qmail boxes of different
vintages (although
A simple conceptual question, really, but I'm unable to resolve by looking
at the archives.
I've set up tcpserver driving oidentd, like this:
tcpserver -R 0 113 /usr/local/sbin/oidentd -i -u 99 -g 9 &
This runs tcpserver as root, and then on connect calls oidentd which
switches to UID99/GID9
On Sat, Apr 08, 2000 at 12:12:24AM +0800,
[EMAIL PROTECTED] wrote:
> Is there any component of qmail/ucspi-tcp that would initiate identd
> lookups on a remote host? A network admin has complained that his
> server has been receiving a large amount of identd queries to his
> server
[EMAIL PROTECTED] <[EMAIL PROTECTED]> wrote:
> Is there any component of qmail/ucspi-tcp that would initiate identd
> lookups on a remote host? A network admin has complained that his
> server has been receiving a large amount of identd queries to his
> server coming f
Is there any component of qmail/ucspi-tcp that would initiate identd
lookups on a remote host? A network admin has complained that his
server has been receiving a large amount of identd queries to his
server coming from our mailserver.
Here's the excerpt from the logfile he sent us. 210.16
On Wed, Apr 05, 2000 at 02:46:25PM -0300, Ricardo D. Albano wrote:
>
> I'm seeing that my qmail smtp when accept an inbound smtp connectio tryes to
> make an identd connection to the remote smtp, I see this with a netstat -n
>
> How can disable this feature ?
I presume
U
I'm seeing that my qmail smtp when accept an inbound smtp connectio tryes to
make an identd connection to the remote smtp, I see this with a netstat -n
Active Internet connections (w/o servers)
Proto Recv-Q Send-Q Local Address Foreign Address State
tcp0
> the rpm that i installed that took over is qmail-run. it installs
> qmail-smtp to run under tcpserver instead of inetd (somehow disabling
> all my
> services in inetd.conf; i still haven't found out how to restore inetd
> to
> full working order). the link to where i got the rpms is
> ftp://mo
james
-Original Message-
From: Mate Wierdl [mailto:[EMAIL PROTECTED]]
Sent: Friday, February 18, 2000 10:19
To: [EMAIL PROTECTED]
Cc: [EMAIL PROTECTED]
Subject: RE: Enabling Identd using Tcpserver
actually i do know quite a bit about administering linux. that message
came
of
actually i do know quite a bit about administering linux. that message came
off sounding like i have no idea what i'm talking about. it's just that
this has been driving me nuts and i'm a little worn out. inetd was running;
just not properly. tcpserver had taken over and was
On Fri, Feb 18, 2000 at 01:38:45AM -0500, James Timberlake wrote:
> actually i do know quite a bit about administering linux. that message came
Well how about you demonstrate it by showing us the analysis you have
made of your problem?
A good admin does as much debugging as they can. They do so
l and reinstall it using the tar files instead of the rpms. that way
i'll have more control over how it works.
i still haven't figured out how to run identd using tcpserver, but maybe
i'll just use qmail with inetd (**gasp**). =]
thanks for all the help,
james
-Original Message--
On Thu, Feb 17, 2000 at 10:53:24PM -0500, James Timberlake wrote:
> i checked the processes and there is one listed as inetd but identd is not
> working. i am running mandrake linux 6.1 if that is any help. and what do
> you mean by "just run it".
These are really "h
i checked the processes and there is one listed as inetd but identd is not
working. i am running mandrake linux 6.1 if that is any help. and what do
you mean by "just run it".
-Original Message-
From: Chris Johnson [mailto:[EMAIL PROTECTED]]
Sent: Thursday, February 17, 200
working under
> tcpserver, but identd doesn't work still. i'd love to get inetd working
> again just for identd (since i know it works there).
To start it right now, just run it. How to make it start at bootup depends on
your OS and how it starts things at bootup.
Chris
well how do i go about re-enabling inetd. inetd.conf no longer loads upon
startup. i realized this once i installed and wasn't able to telnet or ftp
in (good thing i also use ssh). i got both telnet and ftp working under
tcpserver, but identd doesn't work still. i'd love to ge
ftp works just fine under tcpserver.
I'd imagine telnet does too.
mike.
> You don't have to choose between inetd and tcpserver;
> you can use them both.
> Use inetd for services like ident and ftpd and telnet, and
> use tcpserver for SMTP and POP and so forth. tcpserver
> doesn't prevent inet
g because
> qmail came with files to run to get them to load. one service that i haven't
> been able to get running is identd (or auth). this is crucial because now
> users on my box are not allowed to get on EFnet IRC servers. is there a way
> to get this service to run properly un
i haven't been able to
get running is identd (or auth). this is crucial because now users on my
box are not allowed to get on EFnet IRC servers. is there a way to get
this service to run properly under tcpserver or do i have to go back to inetd;
and if so how do i do that.
thanks,
James
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
> > Thanks, Peter. Is it common to use identd for qmail-smtp?
>
> After I have read that inetd is no longer supported by qmail 1.03 I switched to
>tcpserver.
The question was identd, not inetd.
> Anyways, why do ident
> Peter Samuel writes:
> >
> > If you run qmail-smtpd from either inetd/tcp-env or tcpserver then the
> > default operation is to do identd lookups. However, you can turn these
> > off by using the -R option to either tcpenv or tcpserver. See the man
> > pages fo
-- Forwarded message --
Date: Mon, 23 Aug 1999 10:50:03 +1000 (EST)
From: Peter Samuel <[EMAIL PROTECTED]>
To: John Conover <[EMAIL PROTECTED]>
Subject: Re: auth/identd?
On 23 Aug 1999, John Conover wrote:
> Peter Samuel writes:
> >
> > If you run qm
Peter Samuel writes:
>
> If you run qmail-smtpd from either inetd/tcp-env or tcpserver then the
> default operation is to do identd lookups. However, you can turn these
> off by using the -R option to either tcpenv or tcpserver. See the man
> pages for both.
>
> This
On 21 Aug 1999, John Conover wrote:
>
> Qmail does not use auth/identd, right?
>
Maybe :)
If you run qmail-smtpd from either inetd/tcp-env or tcpserver then the
default operation is to do identd lookups. However, you can turn these
off by using the -R option to either tcpenv or tcpse
John Conover wrote:
> Qmail does not use auth/identd, right?
Qmail itself does not need identd. But tcpserver and tcp-env can ask
that info if needed.
--
Frank DENIS aka Jedi/Sector One aka DJ Chrysalis <[EMAIL PROTECTED]>
-> Software : http://www.jedi
On 21 Aug 1999, John Conover wrote:
> Qmail does not use auth/identd, right?
Not qmail-smtpd, but tcpserver does.
See TCPREMOTEINFO in both tcpserver(1), -r and -R and
furher in tcp-environ(5).
/magnus
--
"MOST USELESS site of the year 1998"
--> http://x42.com/urlcalc/
Qmail does not use auth/identd, right?
Thanks,
John
--
John Conover, 631 Lamont Ct., Campbell, CA., 95008, USA.
VOX 408.370.2688, FAX 408.379.9602, whois '!JC154'
[EMAIL PROTECTED], http://www2.inow.com/~conover/john.html
> Probably written by people who don't understand its purpose. identd
> removes the anonymity of TCP connections coming from a single machine
> by allowing the remote end to ask for a magic cookie which, when
> presented to the administrator of the machine, will enable them
Geoff Roberts writes:
> By the way, could anyone tell me how identd adds more security across a
> network? I have read comments on dejanews that it has its own security
> problems.
Probably written by people who don't understand its purpose. identd
removes the anonymity of T
it from the world or the lan. If I
>> am local it works very well.. What can it be?
>
>Defunct reverse DNS, or blocked auth queries on the firewall.
Another problem we were having through a firewall was the use of identd.
By putting a -R (which turns of the identd part of tcpserver
49 matches
Mail list logo