HP-UX Reference (11i v2 07/12) - 1M System Administration Commands A-M (vol 3)

ManualsBrandsHP ManualsSoftwareHP-UX Reference Manuals

361

362

363

364

365

366

367

368

369

370

identd(1M) identd(1M)

NAME

identd - TCP/IP IDENT protocol server

SYNOPSIS

/usr/lbin/identd

[-i|-w|-b

][-tseconds][-Tseconds][-uuid][

-ggid][-pport][-aaddress]

[

-ccharset][-n

][-o][-e][-l][-V][

-m][-N][-d]

DESCRIPTION

identd is a server which implements the TCP/IP proposed standard IDENT user identiﬁcation protocol as

speciﬁed in the RFC 1413 document.

identd operates by looking up speciﬁc TCP/IP connections and returning the user name of the process

owning the connection.

Options

The identd protocol server recognizes the following options:

-aaddress Specify the local address to bind the socket to if using the

-b mode of operation. Can only

be speciﬁed by the IP address and not by the domain name. The default value in IPv4 is

INADDR_ANY , and in IPv6 is in6addr_any , which normally represents all the local

addresses.

-b Run in standalone mode without assistance from inetd. This mode is the least preferred

mode and not supported by HP. A bug or any other fatal condition in the server will make

the server terminate, and it will then have to be restarted manually.

-ccharset Add the optional (according to the IDENT protocol) character set designator to the reply

generated. charset should be a valid character set as described in the MIME RFC in upper-

case characters.

-d Enable some debugging code that normally should NOT be enabled since it breaks the pro-

tocol and may reveal information that should not be available to outsiders.

-e Always return UNKNOWN-ERROR instead of the

NO-USER or INVALID-PORT errors.

-ggid Specify a group id number which the ident server should switch to after binding itself to

the TCP/IP port if using the -b mode of operation.

-i Default mode. This mode should be used when starting the daemon from inetd with the

"nowait" option in the

/etc/inetd.conf

ﬁle. Use of this mode will make inetd start

one

identd daemon for each connection request.

-l Use the system logging daemon syslogd for logging purposes.

-m Use a mode of operation that allows multiple requests to be processed per session. Each

request is speciﬁed one per line and the responses will be returned one per line. The con-

nection will not be closed until the connecting part closes its end of the line. Please note

that this mode violates the protocol speciﬁcation as it currently stands.

-n Always return user numbers instead of user names in order to keep the user names a

secret.

-N Check for a ﬁle .noident in each home directory for a user which the daemon is about to

return the user name for. If that ﬁle exists then the daemon will give the error HIDDEN-

USER

instead of the normal USERID response.

-o Do not reveal the operating system type it is run on and always return OTHER instead.

-pport Specify an alternative port number to bind to if using the -b mode of operation. The port

can be speciﬁed by name or by number. It defaults to the IDENT port (113).

-tseconds Used to specify the timeout limit. This is the number of seconds a server started with the

-w ﬂag will wait for new connections before terminating. The server is automatically res-

tarted by inetd whenever a new connection is requested if it has terminated. A suitable

value for seconds is 120 (two minutes), if used. It defaults to no timeout. That is, it will

wait forever, or until a fatal condition occurs in the server.

HP-UX 11i Version 2: December 2007 Update − 1 − Hewlett-Packard Company 365