Re: What does a firewall do?
From: Justins local account (justin-nntp_at_pipemedia.net)
Date: 01/20/05
- Next message: Arthur Hagen: "Re: What does a firewall do?"
- Previous message: Greg R: "Re: NT 4 server firewall?"
- In reply to: Nick Roberts: "Re: What does a firewall do?"
- Next in thread: Nick Roberts: "Re: What does a firewall do?"
- Reply: Nick Roberts: "Re: What does a firewall do?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Date: Thu, 20 Jan 2005 13:30:53 +0000
Nick Roberts <nick.roberts@acm.org> writes:
> All the documentation I have read says that the 'ident' service should never
> be used for authentication, and generally shouldn't be implemented at all.
> What am I missing?
It shouldn't be used for authentification, but it is used in logging.
the downside is that it allows thingsthe outside to recieve
identifiers from your system, and these are often usernames. Some
people consider this to be a dangerous information leak.
If you don't implement it, your server will reply with a port closed
message, and my server will carry on straight away.
If on the other hand, you do implement the service, and I have a query
about activity on my server, when I ask you for your input I can
advise you that your system advised me it was the httpd user that was
trying to send mail at 3:15 am, and you have a better clue where to
start looking.
-- Justin Murdock
- Next message: Arthur Hagen: "Re: What does a firewall do?"
- Previous message: Greg R: "Re: NT 4 server firewall?"
- In reply to: Nick Roberts: "Re: What does a firewall do?"
- Next in thread: Nick Roberts: "Re: What does a firewall do?"
- Reply: Nick Roberts: "Re: What does a firewall do?"
- Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]
Relevant Pages
|
