Re: [Exim] identd timeouts - exim 3.33

Top Page
Delete this message
Reply to this message
Author: Dave C.
Date:  
To: Paul Wilson
CC: exim-users
Subject: Re: [Exim] identd timeouts - exim 3.33
Anyone that _correctly_ filters port 113 should return a 'refused' or
'unreachable' status immediately, making the timeout irrelevant. The
timeout is only there for broken firewalls that incorrectly silently
drop port 113 packets *without* sending back the unreachable or refused
indication..

On Tue, 27 Nov 2001, Paul Wilson wrote:

> It seems the huge majority of ISPs out there filter port 113/identd.
> Because of this, exim hangs for 30 seconds on a new inbound connection
> because of the 30 second timeout (rfc1413_query_timeout,
> globals.c/globals.h). I fixed this in my own copy by adding a
> identd_timeout var set to 1 second to globals.c/globals.h and applied
> the below diff to verify.c. My questions are: firstly, will this ever be
> a config option instead of requiring the rfc 1413 timeout value?
> Secondly, if not, is there another way to do what I'm doing without
> hacking the source of each new distribution?
>
> Thanks
>
> Paul
>
> --- ../../exim-3.33/src/verify.c        Wed Aug 15 06:09:13 2001
> +++ verify.c    Sat Nov 24 16:25:37 2001
> @@ -1228,9 +1228,9 @@
>   verify_get_ident(int socket)
>   {
>   sender_ident = NULL;
> -if (rfc1413_query_timeout > 0 && verify_check_host(&rfc1413_hosts,
> FALSE))
> +if (identd_timeout > 0 && verify_check_host(&rfc1413_hosts, FALSE))
>     {
> -  char *ident_ptr = ident_id(socket, rfc1413_query_timeout);
> +  char *ident_ptr = ident_id(socket, identd_timeout);
>     if (ident_ptr != NULL)
>       {
>       strncpy(ident_buffer, ident_ptr, sizeof(ident_buffer));

>
>
> --
>
> ## List details at http://www.exim.org/mailman/listinfo/exim-users Exim details at http://www.exim.org/ ##
>
>


--