HP-UX Reference (11i v2 04/09) - 1M System Administration Commands A-M (vol 3)

ManualsBrandsHP ManualsSoftwareHP-UX Reference Manuals

311

312

313

314

315

316

317

318

319

320

identd(1M) identd(1M)

NAME

identd - TCP/IP IDENT protocol server

SYNOPSIS

/usr/lbin/identd

[-i| -w|-b

][-tseconds][-uuid][-ggid][

-pport][-aaddress ][-ccharset ]

[

-n][-o

][-e][-l][-V][-m][-N

][-d]

DESCRIPTION

identd is a server which implements the TCP/IP proposed standard IDENT user identiﬁcation protocol

as speciﬁed in the RFC 1413 document.

identd operates by looking up speciﬁc TCP/IP connections and returning the user name of the process

owning the connection.

Arguments

-i The -i ﬂag, which is the default mode, should be used when starting the daemon from

inetd

with the "nowait" option in the

/etc/inetd.conf

ﬁle. Use of this mode will make inetd

start one identd daemon for each connection request.

-w The -w ﬂag should be used when starting the daemon from

inetd with the "wait" option in

the

/etc/inetd.conf

ﬁle. The identd daemon will run either forever, until a timeout, as

speciﬁed by the

-t ﬂag, occurs.

-b The -b ﬂag can be used to make the daemon run in standalone mode without the assistance

from inetd. This mode is the least preferred mode, and not supported by HP, since a bug or

any other fatal condition in the server will make it terminate and it will then have to be res-

tarted manually.

-tseconds

The -tseconds option is used to specify the timeout limit. This is the number of seconds a

server started with the -w ﬂag will wait for new connections before terminating. The server is

automatically restarted by inetd whenever a new connection is requested if it has ter-

minated. A suitable value for this is 120 (2 minutes), if used. It defaults to no timeout. That is,

it will wait forever, or until a fatal condition occurs in the server.

-uuid The -uuid option is used to specify a user id number which the

ident server should switch to

after binding itself to the TCP/IP port if using the

-b mode of operation.

-ggid The -ggid option is used to specify a group id number which the

ident server should switch

to after binding itself to the TCP/IP port if using the

-b

mode of operation.

-pport The -pport option is used to specify an alternative port number to bind to if using the

-b

mode of operation. It can be speciﬁed by name or by number. Defaults to the IDENT port

(113).

-aaddress

The -aaddress option is used to specify the local address to bind the socket to if using the -b

mode of operation. Can only be speciﬁed by the IP address and not by the domain name. The

default value in IPv4 is INADDR_ANY, and in IPv6 it is in6addr_any, which normally

represents all the local addresses.

-V The -V ﬂag makes identd display the version number and the exit.

-l The -l ﬂag tells identd to use the System logging daemon syslogd for logging purposes.

-o The -o ﬂag tells identd to not reveal the operating system type it is run on and to instead

always return "OTHER".

-e The -e ﬂag tells identd to always return UNKNOWN-ERROR instead of the NO-USER or

INVALID-PORT errors.

-ccharset The -ccharset ﬂags tells identd to add the optional (according to the IDENT protocol) char-

acter set designator to the reply generated. <charset> should be a valid character set as

described in the MIME RFC in upper case characters.

-n The -n ﬂags tells identd to always return user numbers instead of user names if you wish to

keep the user names a secret.

-N The -N ﬂag makes identd check for a ﬁle .noident in each home directory for a user

which the daemon is about to return the user name for. It that ﬁle exists then the daemon will

HP-UX 11i Version 2: September 2004 − 1 − Hewlett-Packard Company Section 1M−−295