Date: Sun, 11 Jul 1999 09:58:09 -0700 (PDT) From: John Polstra <jdp@polstra.com> To: imp@village.org Cc: hackers@freebsd.org Subject: Re: a BSD identd Message-ID: <199907111658.JAA32031@vashon.polstra.com> In-Reply-To: <199907102150.PAA33167@harmony.village.org> References: <57350.931626797@axl.noc.iafrica.com>
next in thread | previous in thread | raw e-mail | index | archive | help
In article <199907102150.PAA33167@harmony.village.org>,
Warner Losh <imp@village.org> wrote:
>
> Some ftpd and sendmail servers make the queries. When I have my fake
> identd in place, they go much faster... :-)
Are you sure? If you simply don't run an identd, the queries will get
an instant connection refused error. That's even faster than sending
back a bogus response.
The only way a long timeout can occur is if you have a filter rule
installed that drops the incoming packets without responding to them.
You can block the incoming packets but still avoid the timeout with a
filter rule that sends back a reset:
add reset tcp from any to any auth setup in via etha16
John
--
John Polstra jdp@polstra.com
John D. Polstra & Co., Inc. Seattle, Washington USA
"No matter how cynical I get, I just can't keep up." -- Nora Ephron
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199907111658.JAA32031>