Ident is usually started by /etc/inetd.conf. All 'standard' ports are
in /etc/services. (auth=113)
Not usually a good idea to open identd to listen, as you will only be
answering other's requests for your info. I'd comment it out. You
can't booby-trap it like the wrapped services.
You can initiate an ident to another machine without that port open.
Every open port is susceptible to the buffer overflow attack. It's a
plague.
Looks like at least you got my security suggestions, didn't you?
Is NAT a protocol specific to an ISDN router? Or is it something I
should be aware of? (DSL)
I need to close 6000. (X) Booting to level 3 then startx does it for me
when I make serverargs="-nolisten tcp" in startx script. But booting
directly to level 5 seems to bypass startx, and I can't figure out where
to modify. Tracking down smtp too. Probably leave ssl open &
booby-trap the rest. Remember, tcpd was compiled with
-DPROCESS_OPTIONS, so you have to use #man hosts_options, not #man
hosts.deny
--
Carl A. Cook
quantumATaugustmailDOTcom
Sign the petition at http://www.libranet.com/petition.html
Help bring us more Linux Drivers
John Aldrich wrote:
> What port does IdentD listen on? I'm using NAT here on my ISDN line,
> so (naturally) anything that isn't a standard port (mail, news, web,
> etc) doesn't get through unless SPECIFICALLY routed.
> If you can tell me which port needs to be let through, I can let it
> through the ISDN router... :-)
> Thanks...
> John
--
Carl A. Cook
quantumATaugustmailDOTcom
Sign the petition at http://www.libranet.com/petition.html
Help bring us more Linux Drivers
