tech-net archive

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index][Old Index]

Re: ipfilter, return-icmp and RFC1122

> At the very least, I would return some kind of error for packets
> headed to port 113 (ident) as a courtesy so that people/apps don't
> have to wait for a timeout.

Yeah, but that's TCP, and you want an RST rather than an ICMP
unreachable (return-rst, I think, is the keyword).

> P.S. To anybody inclined to respond, I'm not interested in arguments
> about the usefulness of the ident protocol.

Yeah, far too many people think it's supposed to be something it's not,
and then point out - at exhausting length - how thoroughly it fails to
be that thing it's not trying to be. :-/

/~\ The ASCII                           der Mouse
\ / Ribbon Campaign
 X  Against HTML     
/ \ Email!           7D C8 61 52 5D E7 2D 39  4E F1 31 3E E8 B3 27 4B

Home | Main Index | Thread Index | Old Index