ident question

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

 



Ident does in fact reveal user ids. However, so does writing an email to someone in most cases. As far as whether or not you should run ident, I have it disabled and I have never had any problems related to not having it running. Supposedly, there are some sites that require it. However, these are a dying breed, and I've never seen one. If you don't need it, you should disable it. It is never a good idea to have something running that opens a port on your system unless you need the service it provides. You should also consider disabling services like finger, talk, and netstat except for on the local machine. If your not using nfs, shutdown the rpc portmapper as well. No other services I know of need it. Remember, you can always reenable any of these if you later discover you need them.

-- 
Joseph C. Lininger
jbahm at pcdesk.net

On Mon, 4 Aug 2003, Gregory Nowak wrote:

> Hi all.
>
> Still on the security theme, I read somewhere that it is a bad idea to
> run ident, because it can reveal  user ids to potential crackers.
>
> Is it generally better to run ident, or not to run it?
> Thanks.
>
> Greg
>
>
>




[Index of Archives]     [Linux for the Blind]     [Fedora Discussioin]     [Linux Kernel]     [Yosemite News]     [Big List of Linux Books]
  Powered by Linux