Date: Sun, 11 Jul 1999 09:58:51 +0200 From: Mark Murray <mark@grondar.za> To: chris@calldei.com Cc: Ben Rosengart <ben@skunk.org>, "Brian F. Feldman" <green@FreeBSD.ORG>, hackers@FreeBSD.ORG Subject: Re: a BSD identd Message-ID: <199907110758.JAA15467@gratis.grondar.za>
next in thread | raw e-mail | index | archive | help
> The whole point of ident was -- and still is -- to > authenticate or verify who created a specific TCP connection. If > the machine is untouched (i.e., has not had the root account > compromised), then ident responses are usually trustworthy > enough. It is generally not applicable to single user operating > systems like Windows, Mac OS, or DOS. ...in other words it is not applicable to the vast majority of operating systems where it is used. Where is ident used? Predominantly with IRC, with a minority holding in tcp_wrappers and mail servers. In a "hard" wrapping environment, by the time you need ident, it is most likely compromised. M -- Mark Murray Join the anti-SPAM movement: http://www.cauce.org To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199907110758.JAA15467>