At 9:44 +0530 9/8/2001, Suresh Ramasubramanian wrote:
>+++ Karl Schmidt [exim-users] <07/09/01 21:26 -0500>:
>> Has anyone had security problems providing ident (actually in our case
>> pident-3.0.12) or are we being over concerned with any risk in providing the
>> service?
>
>You can use something like fakeidentd to provide any bogus response you want
>in response to an ident request. The "security" as such is mostly the loss
>of privacy of your users.
>
>gnu.org, for example, has an ident that responds to requests with "We dont
>spy on our users" ...
And another possibility is to use one which tells the truth but encrypts
it. If a court order shows up, you can decrypt and answer. Sorry, I don't
have an example to point to.
--John
--
John Baxter jwblist@??? Port Ludlow, WA, USA
