Subject: Re: identd with NAT and IPv6 support.
To: Aidan Cully <aidan@kublai.com>
From: Jim Wise <jwise@draga.com>
List: netbsd-users
Date: 03/27/2002 20:17:06
-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

On Wed, 27 Mar 2002, Aidan Cully wrote:

>I take some issue with that...  ident can be very useful in limited
>situations.  If you've got a multi-user shell service, and don't want
>to ask your users for passwords when they connect over TCP to another
>service you've got, but this service provides different things to
>different users, ident is not a bad way to go.  INN's nnrpd can
>resolve users over ident because of just this situation.
>
>ident is useless once you leave a trusted area.

Which is to say that you translate a problem of imitating a trusted uer
at a trusted IP to a problem of imitating jut the trusted IP?  If that's
your goal, use .rhosts...

- -- 
				Jim Wise
				jwise@draga.com
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.0.6 (NetBSD)
Comment: For info see http://www.gnupg.org

iD8DBQE8om8VN71lEcOYcw4RAnsBAKCGJuPYl9RCihNCoLygc+V/gyAZfACeNRwl
gJTOC+KbjKm1KQbyCk89n94=
=MbTG
-----END PGP SIGNATURE-----