Re: [fw-wiz] identd, revisited



nuqneH,

actually i have one more possible use case:

remember fwtk? i have an authenticating version of plug-gw. the way
it works: as a connection attempt is done, the proxy requests authentication
from authsrv via standard "authorize" command. Which, in turn, makes a
lookup if host/username pair matches active OOB authentication session and
if yes, requests keepalive/confirmation from it and given it is ok
grants connection right. Well, it requires *username* to be known.
Why not to request it via identd?

_______________________________________________
firewall-wizards mailing list
firewall-wizards@xxxxxxxxxxxxxxxxxxxxx
https://listserv.icsalabs.com/mailman/listinfo/firewall-wizards



Relevant Pages

  • understanding chkrootkit: sshd section
    ... Rhosts Authentication disabled, originating port will not be trusted. ... Secure connection to %.100s on port %hu refused%.100s. ... Warning: Remote host refused compression. ... Received RSA challenge from server. ...
    (comp.security.unix)
  • understanding chkrootkit: sshd section
    ... Rhosts Authentication disabled, originating port will not be trusted. ... Secure connection to %.100s on port %hu refused%.100s. ... Warning: Remote host refused compression. ... Received RSA challenge from server. ...
    (comp.os.linux.security)
  • (fwd) FreeBSD Security Advisory FreeBSD-SA-01:39.tcp-isn (fwd)
    ... susceptible to attack than other unencrypted sessions. ... > incoming connection is being established, ... > All versions of FreeBSD 3.x and 4.x prior to the correction date ... > requiring other authentication of the originator are vulnerable to ...
    (FreeBSD-Security)
  • Re: Underlying connection was closed
    ... Because it is possible for an application to use the connection without being authenticated, you need to be sure that there is no security vulnerability in your ... If your application sends requests for multiple users and relies on authentication to protect ... I've written a client application which fires off multiple threads ...
    (microsoft.public.dotnet.framework.webservices)
  • Re: understanding chkrootkit: sshd section
    ... Connection will not be encrypted. ... > Rhosts Authentication disabled, originating port will not be trusted. ... > Could not request local forwarding. ... Remote host failed or refused to allocate a pseudo tty. ...
    (comp.os.linux.security)