HP-UX Reference (11i v1 05/09) - 1M System Administration Commands A-M (vol 3)

ManualsBrandsHP ManualsSoftwareHP-UX Reference Manuals

361

362

363

364

365

366

367

368

369

370

identd(1M) identd(1M)

NAME

identd - TCP/IP IDENT protocol server

SYNOPSIS

/usr/lbin/identd

[-i| -w|-b

][-tseconds][-uuid][-ggid][

-pport][-aaddress][-ccharset]

[

-n][-o

][-e][-l][-V][-m][

-N][-d]

DESCRIPTION

identd is a server which implements the TCP/IP proposed standard IDENT user identiﬁcation protocol as

speciﬁed in the RFC 1413 document.

identd operates by looking up speciﬁc TCP/IP connections and returning the user name of the process

owning the connection.

Arguments

-i The -i ﬂag, which is the default mode, should be used when starting the daemon from

inetd

with the "nowait" option in the

/etc/inetd.conf

ﬁle. Use of this mode will make inetd

start one identd daemon for each connection request.

-w The -w ﬂag should be used when starting the daemon from inetd with the "wait" option in the

/etc/inetd.conf ﬁle. The

identd daemon will run either forever, until a timeout, as

speciﬁed by the

-t ﬂag, occurs.

-b The -b ﬂag can be used to make the daemon run in standalone mode without the assistance

from inetd. This mode is the least preferred mode, and not supported by HP, since a bug or

any other fatal condition in the server will make it terminate and it will then have to be res-

tarted manually.

-tseconds

The -tseconds option is used to specify the timeout limit. This is the number of seconds a server

started with the -w ﬂag will wait for new connections before terminating. The server is automat-

ically restarted by inetd whenever a new connection is requested if it has terminated. A suit-

able value for this is 120 (2 minutes), if used. It defaults to no timeout (ie, will wait forever, or

until a fatal condition occurs in the server).

-uuid The -uuid option is used to specify a user id number which the ident

server should switch to

after binding itself to the TCP/IP port if using the

-b

mode of operation.

-ggid The -ggid option is used to specify a group id number which the

ident server should switch to

after binding itself to the TCP/IP port if using the

-b

mode of operation.

-pport The -pport option is used to specify an alternative port number to bind to if using the

-b mode

of operation. It can be speciﬁed by name or by number. Defaults to the IDENT port (113).

-aaddress

The -aaddress option is used to specify the local address to bind the socket to if using the

-b

mode of operation. Can only be speciﬁed by IP address and not by domain name. Defaults to the

INADDR_ANY address which normally means all local addresses.

-V The -V ﬂag makes identd display the version number and the exit.

-l The -l ﬂag tells identd to use the System logging daemon syslogd for logging purposes.

-o The -o ﬂag tells identd to not reveal the operating system type it is run on and to instead

always return "OTHER".

-e The -e ﬂag tells identd to always return "UNKNOWN-ERROR" instead of the "NO-USER" or

"INVALID-PORT" errors.

-ccharset

The -ccharset ﬂags tells identd to add the optional (according to the IDENT protocol) charac-

ter set designator to the reply generated. <charset> should be a valid character set as described

in the MIME RFC in upper case characters.

-n The -n ﬂags tells identd to always return user numbers instead of user names if you wish to

keep the user names a secret.

-N The -N ﬂag makes identd check for a ﬁle .noident in each homedirectory for a user which

the daemon is about to return the user name for. It that ﬁle exists then the daemon will give the

error HIDDEN-USER instead of the normal USERID response.

HP-UX 11i Version 1: September 2005 − 1 − Hewlett-Packard Company Section 1M−−345