From owner-freebsd-stable  Thu Jul 27 11:42:41 2000
Delivered-To: freebsd-stable@freebsd.org
Received: from rover.village.org (rover.village.org [204.144.255.49])
	by hub.freebsd.org (Postfix) with ESMTP
	id 2E15837C05B; Thu, 27 Jul 2000 11:42:33 -0700 (PDT)
	(envelope-from imp@harmony.village.org)
Received: from harmony.village.org (harmony.village.org [10.0.0.6])
	by rover.village.org (8.9.3/8.9.3) with ESMTP id MAA37901;
	Thu, 27 Jul 2000 12:42:30 -0600 (MDT)
	(envelope-from imp@harmony.village.org)
Received: from harmony.village.org (localhost.village.org [127.0.0.1]) by harmony.village.org (8.9.3/8.8.3) with ESMTP id MAA41128; Thu, 27 Jul 2000 12:42:25 -0600 (MDT)
Message-Id: <200007271842.MAA41128@harmony.village.org>
To: Alfred Perlstein <bright@wintelcom.net>
Subject: Re: Auth service sequencial probe. 
Cc: npd@el.com.br, freebsd-stable@FreeBSD.ORG,
	freebsd-questions@FreeBSD.ORG
In-reply-to: Your message of "Thu, 27 Jul 2000 09:53:30 PDT."
		<20000727095330.Y17222@fw.wintelcom.net> 
References: <20000727095330.Y17222@fw.wintelcom.net>  <39804D5D.B6634FB0@el.com.br> 
Date: Thu, 27 Jul 2000 12:42:25 -0600
From: Warner Losh <imp@village.org>
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

In message <20000727095330.Y17222@fw.wintelcom.net> Alfred Perlstein writes:
: Identd vulnerabities are _really_ old.

And most of the old ones were really sendmail or http trusting the
response too much and not a vulnerability in the identd daemon.

The only vulnewrability in identd is thinking you can trust the
results you get from machines not in your administrative domain.

Warner


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message