From owner-freebsd-hackers Sat Jul 10 15:11:52 1999 Delivered-To: freebsd-hackers@freebsd.org Received: from axl.noc.iafrica.com (axl.noc.iafrica.com [196.31.1.175]) by hub.freebsd.org (Postfix) with ESMTP id 0685D14D72; Sat, 10 Jul 1999 15:11:41 -0700 (PDT) (envelope-from sheldonh@axl.noc.iafrica.com) Received: from sheldonh (helo=axl.noc.iafrica.com) by axl.noc.iafrica.com with local-esmtp (Exim 3.02 #1) id 1135Ks-000HYT-00; Sun, 11 Jul 1999 00:11:06 +0200 From: Sheldon Hearn To: chris@calldei.com Cc: Mark Murray , Ben Rosengart , "Brian F. Feldman" , hackers@FreeBSD.ORG Subject: Re: a BSD identd In-reply-to: Your message of "Sat, 10 Jul 1999 15:57:21 EST." <19990710155721.C57198@holly.dyndns.org> Date: Sun, 11 Jul 1999 00:11:06 +0200 Message-ID: <67484.931644666@axl.noc.iafrica.com> Sender: owner-freebsd-hackers@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG On Sat, 10 Jul 1999 15:57:21 EST, Chris Costello wrote: > The whole point of ident was -- and still is -- to > authenticate or verify who created a specific TCP connection. Crhis, as Warner's already pointed out, you're wrong. :-) Ident's intended purpose is for me to give you something to report back to me when you think someone on my box is screwing around. Ident responses are not useful to anyone but the owner of the box issuing them, and even then they're only useful until the box is penetrated. This is all silliness. The service has a place, it's just mostly misunderstood, and none of this has anything to do with Brian Feldman's original mail. I _will_ have a problem with anyone changing inetd to provide real usernames in response to auth (ident) service requests, where it did not do so before. I don't have a problem with inetd being _able_ to do so if it's given some extra option, so long as that doesn't become a new default for existing configurations. Ciao, Sheldon. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message