Identd

The Ident service as specified by RFC 1413 is mostly used by various IRC networks and the occasional old FTP server to ask a remote server which user is making a connection. This method is quite untrustworthy, as the remote host can simply choose to lie.

So you have two choices:

Tell the truth (see #oidentd below)
Tell a little white lie (see #nullIdentdMod or #nullIdentd below)

oidentd

See oidentd.

If all went well, you should have the auth service running on port 113. A good way of checking this is by installing nmap (if you do not have it already) and typing

$ nmap localhost

nullIdentdMod

Install the nullidentdmod^AUR package.

Then enable and start nullidentdmod.socket.

Check if is working here.

As is, nullidentdmod will return a random userid.

Customization

Create a drop-in file for nullidentdmod@.service.

/etc/systemd/system/nullidentdmod@.service.d/override.conf

[Service]                                
ExecStart=/usr/bin/nullidentdmod '''''userid'''''

Check if is working here

nullIdentd

This Ident server is capable of only returning the same name for any query. With a quick change to a single line of code, it can be customized to return any name you can think. One use for such a simple service would be for IRC client connections to ensure a degree of privacy (remote IRC server and users do not know your username) as well as allowing a small degree of 'vanity plating' for use in IRC channels.

The original code suffered link rot, but may now be found on GitHub, at this address https://github.com/dxtr/nullidentd.

Systemd activation

Create /etc/systemd/system/identd@.service, Add the following:

/etc/systemd/system/identd@.service

[Unit]
Description=per connection null identd
 
[Service]
User=nobody
ExecStart=/usr/local/sbin/nullidentd
StandardInput=socket
StandardOutput=socket

Then create /etc/systemd/system/ident.socket, Add the following:

Reload to make use of the new files:

You can check the unit status of to test that it is listening successfully.

This should output the following:

ident.socket - socket for ident
   Loaded: loaded (/etc/systemd/system/ident.socket; enabled)
   Active: active (listening) since Fri 2014-01-24 02:30:53 WST; 30 seconds ago
   Listen: [::]:113 (Stream)
 Accepted: 0; Connected: 0

Jan 24 02:30:53 HOSTNAME systemd[1]: Listening on socket for ident.

gollark: Also FPGAs.

gollark: Also, they now make GPUs and optical networking gear and WiFi chips and a bunch of other random nonsense.

gollark: You DO realize that they are massively bigger than AMD and make up basically the entire server market still?

gollark: What? No.

gollark: IIRC their Atoms from the time were pretty competitive with ARM. But they never took off because... I'm not actually sure.

This article is issued from Archlinux. The text is licensed under Creative Commons - Attribution - Sharealike. Additional terms may apply for the media files.