[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: security on Dial-up Systems
On Sun, 3 Aug 1997, Nimrod Zimerman wrote:
> On Sat, 2 Aug 1997, Gilad Ben-Yossef wrote:
>
> > > True. For people around here who wouldn't like to disclose real usernames
> > > in their system when connecting to IRC, I would recommend finding and
> > > installing 'Fake Identd', like I will as soon as Ireinstall my Linux :)
> >
> > man indetnd - there is an option there (-n i believe to not reveal user
> > names (but rather use numbers).
>
> But most IRC servers refuse to honor this kind of 'username' (again RFC
> specification, I'd guess).
>
> Let's see...
> Yes. It is against RFC 1413. That RFC doesn't state that the response
> should consist of a username - it merely states that the response should
> be something unique that identifies the user on that machine.
>
> I return 'ircuser' for all queries on ports6660-6669, and port 7000
> (which are common IRC ports).
>
> The identd protocol is really quite useless these days. It wasn't designed
> for a situation where every user as a machine of his own, and can
> determine what his ident will say. I think it is only a matter of time
> until they will come up with an ident-like protocol that queries your ISP.
Such a protocol and implementation are already in use in Norway, or were,
on irc.homelien.no , with use of R: lines (restriction lines). For people
who are interested e-mail me.
--Ariel
>
> Nimrod
>
+---------------------------------------------------------+
| Ariel Biener |
| e-mail: ariel@post.tau.ac.il Work ph: 03-6406086 |
+---------------------------------------------------------+
References: