Security Incidents mailing list archives
Re: Port 113 requests?
From: Helmut Springer <delta () FaVeVe Uni-Stuttgart de>
Date: Fri, 7 Dec 2001 19:12:57 +0100
On Thu 2001-12-06 (13:31), Ryan Russell wrote:
uin is connecting to it. It's intended to be a weak authentication scheme, though it's basically useless, since it's info supplied by the client.
As one will see this quite often, the recent rfc1413 defining it is worth reading (and nice to read). Obsoleting rfc931 it renames the protocol from "Authentication" to "Identification Protocol". Primary purpose nowadays IMHO is to provide the admin of the system running identd with information if someone having done ident lookups contacts him. Or set up things in cooperation, since as pointed out the information is just as trustworthy as the answering system (and the link, ok). BTW: identd may reply with crypted tokens as well. -- MfG/best regards, helmut springer "Freedom's just another word for nothing left to lose" ---------------------------------------------------------------------------- This list is provided by the SecurityFocus ARIS analyzer service. For more information on this free incident handling, management and tracking system please see: http://aris.securityfocus.com
Current thread:
- Port 113 requests? Michael Ward (Dec 06)
- Re: Port 113 requests? Chris Wilkes (Dec 06)
- Re: Port 113 requests? Ryan Russell (Dec 06)
- Re: Port 113 requests? Helmut Springer (Dec 07)
- Re: Port 113 requests? Valdis . Kletnieks (Dec 07)
- Re: Port 113 requests? Ryan Russell (Dec 07)
- <Possible follow-ups>
- RE: Port 113 requests? Slighter, Tim (Dec 06)
- RE: Port 113 requests? Ryan McDonnell (Dec 07)
- RE: Port 113 requests? Andrew Leonard (Dec 07)
- RE: Port 113 requests? Todd Suiter (Dec 07)
- Re: Port 113 requests? Helmut Springer (Dec 07)
- Re: Port 113 requests? Crist J . Clark (Dec 07)
- Re: Port 113 requests? Greg A. Woods (Dec 07)
- Re: Port 113 requests? Paul Cardon (Dec 07)
(Thread continues...)