From owner-freebsd-questions  Sun Feb 14 19:51:33 1999
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id TAA24799
          for freebsd-questions-outgoing; Sun, 14 Feb 1999 19:51:33 -0800 (PST)
          (envelope-from owner-freebsd-questions@FreeBSD.ORG)
Received: from lafcol (lafcol.lafayette.edu [139.147.8.5])
          by hub.freebsd.org (8.8.8/8.8.8) with SMTP id TAA24794
          for <freebsd-questions@freebsd.org>; Sun, 14 Feb 1999 19:51:28 -0800 (PST)
          (envelope-from knollm@lafcol.lafayette.edu)
Received: from localhost by lafcol (SMI-8.6/SMI-SVR4)
	id WAA09601; Sun, 14 Feb 1999 22:46:07 -0500
Date: Sun, 14 Feb 1999 22:46:07 -0500 (EST)
From: Mike Knoll <knollm@lafcol.lafayette.edu>
To: root@isis.dynip.com
cc: freebsd-questions@FreeBSD.ORG
Subject: Re: tcp wrappers/identing
In-Reply-To: <199902150242.FAA26798@isis.dynip.com>
Message-ID: <Pine.SOL.3.96.990214224316.9558A-100000@lafcol.lafayette.edu>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-questions@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

I just want to log any user info on the connection, not accept or deny the
connection based on the user info.

As for the slow down, if I enable ident'ing on tcpwrappers, it waits until
it knows the connecting party's username before it starts the demon.  If
the connecting party doesn't run ident, this attempt will cause a 10
second delay in the wrapper(the timeout).  I don't want this delay.

I want the connection to, lets say, ftpd, to launch ftpd immediately, and
look up the user name info in the background, since I don't want to filter
based on it.  I just want to log it.

Mike

On Mon, 15 Feb 1999 root@isis.dynip.com wrote:

> On 14 Feb, Mike Knoll wrote:
> > I want to ident all incoming connection, like tcp wrappers will do, but
> > not require ident to connect.  Just to log the ident response, if
> > avaliable.  TCP wrappers will ident, but the require the ident to complete
> > before they will pass control over to the actual demon.  Is there an app
> > that will accept the connection, run the demon so the incoming user gets
> > immediate response, and at the same time, ident the connection?
> > 
> > Mike
> > 
> > 
> > To Unsubscribe: send mail to majordomo@FreeBSD.org
> > with "unsubscribe freebsd-questions" in the body of the message
> What is it that you want, this way you will loose the option to do
> something to unwanted traffic, unlessyou are testing something.
> 
> Connection using tcpwrapper is immediate in sense that neither the
> user, nor the sysadmin will ever complaain of wrapper causing slowing
> in traffic.
> 
> In case you just need it done, you may hack the tcwraper source code to
> do that for you, but I recommend changing the name to  ( repparw ) if
> you see what I mean :-)
> 
> adios amigo.
> 
> 


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-questions" in the body of the message