[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: x-chat / identd
On Sun, Oct 28, 2001 at 10:40:02AM -0600, Lee Helpingstine wrote:
> Whats your problem with identd?
1. It's a network-accessible service. That makes it a potential entry
point for a cracker.
2. It often runs as root, making point 1 that much more serious.
3. It gives out information that the remote host really doesn't
need (the local username or UID), but which could be useful to
an attacker.
4. It can often be used to retrieve a lot more information that
even that.
See
http://www.securityfocus.com/cgi-bin/search.pl?category=23&query=identd
Steve
--
steve@silug.org | Southern Illinois Linux Users Group
(618)398-7360 | See web site for meeting details.
Steven Pritchard | http://www.silug.org/
-
To unsubscribe, send email to majordomo@silug.org with
"unsubscribe silug-discuss" in the body.