[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: x-chat / identd

To: silug-discuss@silug.org
Subject: Re: x-chat / identd
From: Steven Pritchard <steve@silug.org>
Date: Sun, 28 Oct 2001 14:39:30 -0600
In-Reply-To: <Pine.BSO.4.32.0110281036050.4753-100000@egotistical.reprehensible.net>; from sig11@reprehensible.net on Sun, Oct 28, 2001 at 10:40:02AM -0600
Organization: Southern Illinois Linux Users Group
References: <20011028092547.A12706@osiris.silug.org> <Pine.BSO.4.32.0110281036050.4753-100000@egotistical.reprehensible.net>
Reply-To: silug-discuss@silug.org
Sender: owner-silug-discuss@silug.org
User-Agent: Mutt/1.2.5i

On Sun, Oct 28, 2001 at 10:40:02AM -0600, Lee Helpingstine wrote:
> Whats your problem with identd?

1. It's a network-accessible service.  That makes it a potential entry
   point for a cracker.

2. It often runs as root, making point 1 that much more serious.

3. It gives out information that the remote host really doesn't
   need (the local username or UID), but which could be useful to
   an attacker.

4. It can often be used to retrieve a lot more information that
   even that.

See

  http://www.securityfocus.com/cgi-bin/search.pl?category=23&query=identd

Steve
-- 
steve@silug.org           | Southern Illinois Linux Users Group
(618)398-7360             | See web site for meeting details.
Steven Pritchard          | http://www.silug.org/
-
To unsubscribe, send email to majordomo@silug.org with
"unsubscribe silug-discuss" in the body.

Follow-Ups:
- Re: x-chat / identd
  - From: "Casey Boone" <ophidian@mychoice.net>

References:
- Re: x-chat / identd
  - From: Steven Pritchard <steve@silug.org>
- Re: x-chat / identd
  - From: Lee Helpingstine <sig11@reprehensible.net>

Prev by Date: Re: x-chat / identd
Next by Date: Re: x-chat / identd
Prev by thread: Re: x-chat / identd
Next by thread: Re: x-chat / identd
Index(es):
- Date
- Thread