v29i125: pidentd-2.7 - Portable Ident Daemon, V2.7, Part02/09

1 view
Skip to first unread message

Peter Eriksson

unread,
Sep 8, 1996, 3:00:00 AM9/8/96
to

Submitted-By: pe...@ifm.liu.se (Peter Eriksson)
Posting-Number: Volume 29, Issue 125
Archive-Name: pidentd-2.7/part02

#!/bin/sh
# This is part 02 of a multipart archive.
save_IFS="${IFS}"
IFS="${IFS}:"
gettext_dir=FAILED
locale_dir=FAILED
first_param="$1"
for dir in $PATH
do
if test "$gettext_dir" = FAILED && test -f $dir/gettext \
&& ($dir/gettext --version >/dev/null 2>&1)
then
set `$dir/gettext --version 2>&1`
if test "$3" = GNU
then
gettext_dir=$dir
fi
fi
if test "$locale_dir" = FAILED && test -f $dir/shar \
&& ($dir/shar --print-text-domain-dir >/dev/null 2>&1)
then
locale_dir=`$dir/shar --print-text-domain-dir`
fi
done
IFS="$save_IFS"
if test "$locale_dir" = FAILED || test "$gettext_dir" = FAILED
then
echo=echo
else
TEXTDOMAINDIR=$locale_dir
export TEXTDOMAINDIR
TEXTDOMAIN=sharutils
export TEXTDOMAIN
echo="$gettext_dir/gettext -s"
fi
touch -am 1231235999 $$.touch >/dev/null 2>&1
if test ! -f 1231235999 && test -f $$.touch; then
shar_touch=touch
else
shar_touch=:
echo
$echo 'WARNING: not restoring timestamps. Consider getting and'
$echo "installing GNU \`touch', distributed in GNU File Utilities..."
echo
fi
rm -f 1231235999 $$.touch
#
if mkdir _sh08724; then
$echo 'x -' 'creating lock directory'
else
$echo 'failed to create lock directory'
exit 1
fi
# ============= pidentd-2.7/READMEs/README.DES ==============
if test ! -d 'pidentd-2.7'; then
$echo 'x -' 'creating directory' 'pidentd-2.7'
mkdir 'pidentd-2.7'
fi
if test ! -d 'pidentd-2.7/READMEs'; then
$echo 'x -' 'creating directory' 'pidentd-2.7/READMEs'
mkdir 'pidentd-2.7/READMEs'
fi
if test -f 'pidentd-2.7/READMEs/README.DES' && test "$first_param" != -c; then
$echo 'x -' SKIPPING 'pidentd-2.7/READMEs/README.DES' '(file already exists)'
else
$echo 'x -' extracting 'pidentd-2.7/READMEs/README.DES' '(binary)'
sed 's/^X//' << 'SHAR_EOF' | uudecode &&
begin 600 pidentd-2.7/READMEs/README.DES
<uuencoded_portion_removed>
#+@H*
`
end
SHAR_EOF
$shar_touch -am 0611130694 'pidentd-2.7/READMEs/README.DES' &&
chmod 0644 'pidentd-2.7/READMEs/README.DES' ||
$echo 'restore of' 'pidentd-2.7/READMEs/README.DES' 'failed'
if ( md5sum --help 2>&1 | grep 'sage: md5sum \[' ) >/dev/null 2>&1 \
&& ( md5sum --version 2>&1 | grep -v 'textutils 1.12' ) >/dev/null; then
md5sum -c << SHAR_EOF >/dev/null 2>&1 \
|| $echo 'pidentd-2.7/READMEs/README.DES:' 'MD5 check failed'
da42530b0cca5fc01e72dfdeba2e0e19 pidentd-2.7/READMEs/README.DES
SHAR_EOF
else
shar_count="`LC_ALL= LC_CTYPE= LANG= wc -c < 'pidentd-2.7/READMEs/README.DES'`"
test 8238 -eq "$shar_count" ||
$echo 'pidentd-2.7/READMEs/README.DES:' 'original size' '8238,' 'current size' "$shar_count!"
fi
fi
# ============= pidentd-2.7/READMEs/README.aix ==============
if test -f 'pidentd-2.7/READMEs/README.aix' && test "$first_param" != -c; then
$echo 'x -' SKIPPING 'pidentd-2.7/READMEs/README.aix' '(file already exists)'
else
$echo 'x -' extracting 'pidentd-2.7/READMEs/README.aix' '(text)'
sed 's/^X//' << 'SHAR_EOF' > 'pidentd-2.7/READMEs/README.aix' &&
Here are some tips&tricks for IBM users:
X
XFrom Chris Moller (mol...@vnet.ibm.com, mol...@futserv.austin.ibm.com):
X
"Under IBM weirdness, after you modify /etc/services or /etc/inetd.conf,
you have to update the ODM by running, from root, the following:
X
X inetimp
X chrctcp -S -c inetd -f debug='no' -f file='/etc/inetd.conf'
X
or the changes don't take effect. Other than that, everything worked
fine out of the box."
X
X
X
XFrom James Carlson <car...@xylogics.com>:
X
One minor note, this program suffers from the same problem that a lot
of other kernel-reading programs do on AIX. Gcc doesn't align the
contents of the user structure correctly. Users have to add a "long
foo" element right before U_irss in a private copy of sys/user.h in
order to make it work.
SHAR_EOF
$shar_touch -am 0811210096 'pidentd-2.7/READMEs/README.aix' &&
chmod 0644 'pidentd-2.7/READMEs/README.aix' ||
$echo 'restore of' 'pidentd-2.7/READMEs/README.aix' 'failed'
if ( md5sum --help 2>&1 | grep 'sage: md5sum \[' ) >/dev/null 2>&1 \
&& ( md5sum --version 2>&1 | grep -v 'textutils 1.12' ) >/dev/null; then
md5sum -c << SHAR_EOF >/dev/null 2>&1 \
|| $echo 'pidentd-2.7/READMEs/README.aix:' 'MD5 check failed'
74e743f7ced446187110c27bfa78dda7 pidentd-2.7/READMEs/README.aix
SHAR_EOF
else
shar_count="`LC_ALL= LC_CTYPE= LANG= wc -c < 'pidentd-2.7/READMEs/README.aix'`"
test 775 -eq "$shar_count" ||
$echo 'pidentd-2.7/READMEs/README.aix:' 'original size' '775,' 'current size' "$shar_count!"
fi
fi
# ============= pidentd-2.7/READMEs/README.dynix3 ==============
if test -f 'pidentd-2.7/READMEs/README.dynix3' && test "$first_param" != -c; then
$echo 'x -' SKIPPING 'pidentd-2.7/READMEs/README.dynix3' '(file already exists)'
else
$echo 'x -' extracting 'pidentd-2.7/READMEs/README.dynix3' '(text)'
sed 's/^X//' << 'SHAR_EOF' > 'pidentd-2.7/READMEs/README.dynix3' &&
Machine Type: Sequent Dynix 3.*
X
Make using: make dynix3
Make optimised: make "CFLAGS=-O" "LDFLAGS=-s" dynix3
X
Person(s) porting: Peter Eriksson <p...@lysator.liu.se>
X Frank Maas <ma...@dutiws.tudelft.nl>
X
Port date: A long time ago...
X
Verified working: OS version(s) Pident vers Person
X 3.0.14 2.1beta10 <p...@lysator.liu.se>
X
Build comments: Nothing unusual
X
Install comments: Generally install into /usr/etc
X
Usage comments: Works as daemon (started from rc.local), or
X from inetd (if you port an Inetd yourself
X from for example 4.3BSD-net2).
X We run as user root, but any user with read
X access to /dev/kmem would be fine.
SHAR_EOF
$shar_touch -am 0418024693 'pidentd-2.7/READMEs/README.dynix3' &&
chmod 0644 'pidentd-2.7/READMEs/README.dynix3' ||
$echo 'restore of' 'pidentd-2.7/READMEs/README.dynix3' 'failed'
if ( md5sum --help 2>&1 | grep 'sage: md5sum \[' ) >/dev/null 2>&1 \
&& ( md5sum --version 2>&1 | grep -v 'textutils 1.12' ) >/dev/null; then
md5sum -c << SHAR_EOF >/dev/null 2>&1 \
|| $echo 'pidentd-2.7/READMEs/README.dynix3:' 'MD5 check failed'
c8a42071545a1fa6b0833afb46cce6e7 pidentd-2.7/READMEs/README.dynix3
SHAR_EOF
else
shar_count="`LC_ALL= LC_CTYPE= LANG= wc -c < 'pidentd-2.7/READMEs/README.dynix3'`"
test 645 -eq "$shar_count" ||
$echo 'pidentd-2.7/READMEs/README.dynix3:' 'original size' '645,' 'current size' "$shar_count!"
fi
fi
# ============= pidentd-2.7/READMEs/README.irix4 ==============
if test -f 'pidentd-2.7/READMEs/README.irix4' && test "$first_param" != -c; then
$echo 'x -' SKIPPING 'pidentd-2.7/READMEs/README.irix4' '(file already exists)'
else
$echo 'x -' extracting 'pidentd-2.7/READMEs/README.irix4' '(text)'
sed 's/^X//' << 'SHAR_EOF' > 'pidentd-2.7/READMEs/README.irix4' &&
Machine Type: Silicon Graphics IRIX 4.*
X
Make using: make irix4
Make optimised: make "CFLAGS=-O" "LDFLAGS=-s" irix4
X
Person(s) porting: Simon Leinen <si...@lia.di.epfl.ch>
Port date: A long time ago...
Verified working: OS version(s) Pident vers Person
X 4 2.1beta.10 <si...@lia.di.epfl.ch>
X
Build comments: Nothing unusual
X
Install comments: Generally install into /usr/etc
X
Usage comments: Works as daemon or from inetd with wait/nowait
X
Known bugs: It returns the <uid> of the process owning the
X socket in question instead of the <ruid>. Ie,
X it returns "root" instead of the actual user
X when the user runs a setuid-root program like rsh..
SHAR_EOF
$shar_touch -am 0422173493 'pidentd-2.7/READMEs/README.irix4' &&
chmod 0644 'pidentd-2.7/READMEs/README.irix4' ||
$echo 'restore of' 'pidentd-2.7/READMEs/README.irix4' 'failed'
if ( md5sum --help 2>&1 | grep 'sage: md5sum \[' ) >/dev/null 2>&1 \
&& ( md5sum --version 2>&1 | grep -v 'textutils 1.12' ) >/dev/null; then
md5sum -c << SHAR_EOF >/dev/null 2>&1 \
|| $echo 'pidentd-2.7/READMEs/README.irix4:' 'MD5 check failed'
3a7feb92a6f7de9148492129365718a4 pidentd-2.7/READMEs/README.irix4
SHAR_EOF
else
shar_count="`LC_ALL= LC_CTYPE= LANG= wc -c < 'pidentd-2.7/READMEs/README.irix4'`"
test 660 -eq "$shar_count" ||
$echo 'pidentd-2.7/READMEs/README.irix4:' 'original size' '660,' 'current size' "$shar_count!"
fi
fi
# ============= pidentd-2.7/READMEs/README.irix5 ==============
if test -f 'pidentd-2.7/READMEs/README.irix5' && test "$first_param" != -c; then
$echo 'x -' SKIPPING 'pidentd-2.7/READMEs/README.irix5' '(file already exists)'
else
$echo 'x -' extracting 'pidentd-2.7/READMEs/README.irix5' '(text)'
sed 's/^X//' << 'SHAR_EOF' > 'pidentd-2.7/READMEs/README.irix5' &&
Frank Maas says:
X
I have had this question a couple of times, so I wondered if you could
add the following comment just before the #include <sys/vnode.h> state-
ment in src/kernel/irix5.c... (we are talking pident2.5.1 here ;-):
X
/** Well... here some problems begin: when upgrading IRIX to 5.3 the **/
/** `inst' program shows one of its peculiar bugs: the file vnode.h **/
/** has changed location in between versions and now the file is up- **/
/** grade first (new package) and then deleted (old package). So if **/
/** you have problems finding this file: reinstall eoe1.sw.unix. **/
SHAR_EOF
$shar_touch -am 0605153795 'pidentd-2.7/READMEs/README.irix5' &&
chmod 0644 'pidentd-2.7/READMEs/README.irix5' ||
$echo 'restore of' 'pidentd-2.7/READMEs/README.irix5' 'failed'
if ( md5sum --help 2>&1 | grep 'sage: md5sum \[' ) >/dev/null 2>&1 \
&& ( md5sum --version 2>&1 | grep -v 'textutils 1.12' ) >/dev/null; then
md5sum -c << SHAR_EOF >/dev/null 2>&1 \
|| $echo 'pidentd-2.7/READMEs/README.irix5:' 'MD5 check failed'
2638e94d283102613b77adb9a312e3f7 pidentd-2.7/READMEs/README.irix5
SHAR_EOF
else
shar_count="`LC_ALL= LC_CTYPE= LANG= wc -c < 'pidentd-2.7/READMEs/README.irix5'`"
test 595 -eq "$shar_count" ||
$echo 'pidentd-2.7/READMEs/README.irix5:' 'original size' '595,' 'current size' "$shar_count!"
fi
fi
# ============= pidentd-2.7/READMEs/README.next ==============
if test -f 'pidentd-2.7/READMEs/README.next' && test "$first_param" != -c; then
$echo 'x -' SKIPPING 'pidentd-2.7/READMEs/README.next' '(file already exists)'
else
$echo 'x -' extracting 'pidentd-2.7/READMEs/README.next' '(text)'
sed 's/^X//' << 'SHAR_EOF' > 'pidentd-2.7/READMEs/README.next' &&
Machine Type: NeXTstep 2.x/3.0
X
Make using: make next
Make optimised: make "CFLAGS=-O -pipe" "LDFLAGS=-object" next
X
Person(s) porting: Nigel Metheringham <nig...@ohm.york.ac.uk>
Port date: 5 April, 1993
Verified working: OS version Pident vers Person
X 3.0 2.1beta9 <nig...@ohm.york.ac.uk>
X 2.1 2.1beta9 <Piete....@cl.cam.ac.uk>
X
Build comments: Build using the optimising make line above - makes a
X much smaller tighter daemon.
X Edit the destination part of the Makefile to suit
X your system -
X common values are:-
X DESTROOT=
X DESTDIR=/usr/etc
X MANROOT=/usr/man
X MANDIR=$(MANROOT)/man8
X This has only been tested on black (ie NeXT) hardware,
X however there is no reason why it should not run on
X white (486) hardware under NeXTstep for Intel
X Processors.
X
X
Install comments: Generally install into /usr/etc
X Start from inetd (or as daemon if you prefer)
X
Usage comments: Make sure that the user this runs under from inetd
X can read /dev/kmem. Alternatively run it as root -
X its quite safe!
SHAR_EOF
$shar_touch -am 0418025293 'pidentd-2.7/READMEs/README.next' &&
chmod 0644 'pidentd-2.7/READMEs/README.next' ||
$echo 'restore of' 'pidentd-2.7/READMEs/README.next' 'failed'
if ( md5sum --help 2>&1 | grep 'sage: md5sum \[' ) >/dev/null 2>&1 \
&& ( md5sum --version 2>&1 | grep -v 'textutils 1.12' ) >/dev/null; then
md5sum -c << SHAR_EOF >/dev/null 2>&1 \
|| $echo 'pidentd-2.7/READMEs/README.next:' 'MD5 check failed'
2990a16fe2d633ab446f05c8e975ca0f pidentd-2.7/READMEs/README.next
SHAR_EOF
else
shar_count="`LC_ALL= LC_CTYPE= LANG= wc -c < 'pidentd-2.7/READMEs/README.next'`"
test 1062 -eq "$shar_count" ||
$echo 'pidentd-2.7/READMEs/README.next:' 'original size' '1062,' 'current size' "$shar_count!"
fi
fi
# ============= pidentd-2.7/READMEs/README.next31-m68k-i486 ==============
if test -f 'pidentd-2.7/READMEs/README.next31-m68k-i486' && test "$first_param" != -c; then
$echo 'x -' SKIPPING 'pidentd-2.7/READMEs/README.next31-m68k-i486' '(file already exists)'
else
$echo 'x -' extracting 'pidentd-2.7/READMEs/README.next31-m68k-i486' '(text)'
sed 's/^X//' << 'SHAR_EOF' > 'pidentd-2.7/READMEs/README.next31-m68k-i486' &&
Machine Type: NeXTstep 3.1 for Motorola (or Intel - untested)
X
Make using: make nextmab
X
Make optimised: make "CFLAGS=-O2 -pipe" "LDFLAGS=-object -s" nextmab
X (is the default)
X
Build-Architecture: make "NEXTARCHS=-arch m68k -arch i386"
X for Multi-Architecture-Binary (default)
X make "NEXTARCHS=-arch m68k"
X for Motorola M68000 Binary
X make "NEXTARCHS=-arch i386"
X for Intel i486 Binary
X
Person(s) porting: Nigel Metheringham <nig...@ohm.york.ac.uk>
X (original NeXTSTEP 2.x / 3.0 version)
X Michael Kuch (NeXTSTEP 3.1 version)
X <mi...@atlas.physchem.chemie.uni-tuebingen.de>
X others (?)
X
Port date: 5 April, 1993 - NeXTSTEP 2.x / 3.0 version
X 11 August, 1993 - NeXTSTEP 3.1 version
X
Verified working: OS version Pident vers Person
X 3.1-m68k 2.2alpha1 <mi...@atlas.physchem.chemie.
X uni-tuebingen.de>
X
Build comments: Edit the destination part of the Makefile to suit
X your system -
X common values are:-
X DESTROOT=
X DESTDIR=/usr/etc
X MANROOT=/usr/man
X MANDIR=$(MANROOT)/man8
X Edit the NEXTARCH part of the Makefile if you want
X build a Single-Architecture-Binary (smaller).
X
X This has only been tested on black (ie NeXT) hardware,
X however there is no reason why it should not run on
X white (i486) hardware under NeXTstep 3.1 for Intel
X Processors.
X
X
Install comments: Generally install into /usr/local/etc
X Start from inetd (or as daemon if you prefer)
X
Usage comments: Make sure that the user this runs under from inetd
X can read /dev/kmem. Alternatively run it as root -
X its quite safe!
SHAR_EOF
$shar_touch -am 0811234893 'pidentd-2.7/READMEs/README.next31-m68k-i486' &&
chmod 0644 'pidentd-2.7/READMEs/README.next31-m68k-i486' ||
$echo 'restore of' 'pidentd-2.7/READMEs/README.next31-m68k-i486' 'failed'
if ( md5sum --help 2>&1 | grep 'sage: md5sum \[' ) >/dev/null 2>&1 \
&& ( md5sum --version 2>&1 | grep -v 'textutils 1.12' ) >/dev/null; then
md5sum -c << SHAR_EOF >/dev/null 2>&1 \
|| $echo 'pidentd-2.7/READMEs/README.next31-m68k-i486:' 'MD5 check failed'
21ee6782e5f75620221ca4efa591dbdb pidentd-2.7/READMEs/README.next31-m68k-i486
SHAR_EOF
else
shar_count="`LC_ALL= LC_CTYPE= LANG= wc -c < 'pidentd-2.7/READMEs/README.next31-m68k-i486'`"
test 1580 -eq "$shar_count" ||
$echo 'pidentd-2.7/READMEs/README.next31-m68k-i486:' 'original size' '1580,' 'current size' "$shar_count!"
fi
fi
# ============= pidentd-2.7/READMEs/README.ptx ==============
if test -f 'pidentd-2.7/READMEs/README.ptx' && test "$first_param" != -c; then
$echo 'x -' SKIPPING 'pidentd-2.7/READMEs/README.ptx' '(file already exists)'
else
$echo 'x -' extracting 'pidentd-2.7/READMEs/README.ptx' '(text)'
sed 's/^X//' << 'SHAR_EOF' > 'pidentd-2.7/READMEs/README.ptx' &&
Machine Type: Sequent Dynix/ptx versions 2 & 4
X
Make using: make ptx or make ptx4
Make optimised: make "CFLAGS=-O" "LDFLAGS=-s" ptx2/4
X
Person(s) porting: Tim Wright <ti...@sequent.com>
X
Port date: Wed 19 Apr 1995
X
Verified working: OS version(s) Pident vers Person
X 2.1.6 2.5.2 <ti...@sequent.com>
X 4.1beta 2.5.2 <ti...@sequent.com>
X
Build comments: Nothing unusual
X
Install comments: Generally install into /usr/etc
X
Usage comments: Tested running under inetd. This will *not* work
X unless you have ptx TCP/IP v2.4.0 or later. This
X was the first version where inetd will (optionally)
X pass a socket instead of a TLI endpoint.
X Has been tested in standalone mode.
X It has also not been tested under ptx 4.0.X.
X It may be necessary to change ptx4.c to open /dev/mem
X instead of /dev/kmem for this release.
SHAR_EOF
$shar_touch -am 0803175395 'pidentd-2.7/READMEs/README.ptx' &&
chmod 0644 'pidentd-2.7/READMEs/README.ptx' ||
$echo 'restore of' 'pidentd-2.7/READMEs/README.ptx' 'failed'
if ( md5sum --help 2>&1 | grep 'sage: md5sum \[' ) >/dev/null 2>&1 \
&& ( md5sum --version 2>&1 | grep -v 'textutils 1.12' ) >/dev/null; then
md5sum -c << SHAR_EOF >/dev/null 2>&1 \
|| $echo 'pidentd-2.7/READMEs/README.ptx:' 'MD5 check failed'
532e75d304389851bab5f37b6e0435e9 pidentd-2.7/READMEs/README.ptx
SHAR_EOF
else
shar_count="`LC_ALL= LC_CTYPE= LANG= wc -c < 'pidentd-2.7/READMEs/README.ptx'`"
test 832 -eq "$shar_count" ||
$echo 'pidentd-2.7/READMEs/README.ptx:' 'original size' '832,' 'current size' "$shar_count!"
fi
fi
# ============= pidentd-2.7/READMEs/README.riscos4 ==============
if test -f 'pidentd-2.7/READMEs/README.riscos4' && test "$first_param" != -c; then
$echo 'x -' SKIPPING 'pidentd-2.7/READMEs/README.riscos4' '(file already exists)'
else
$echo 'x -' extracting 'pidentd-2.7/READMEs/README.riscos4' '(text)'
sed 's/^X//' << 'SHAR_EOF' > 'pidentd-2.7/READMEs/README.riscos4' &&
Machine Type: MIPS RISC/OS 4.5x
X
Make using: make riscos4
Make optimised: make "CFLAGS=-O" "LDFLAGS=-s" riscos4
X
Person(s) porting: Nigel Metheringham <nig...@ohm.york.ac.uk>
Port date: 5 April, 1993
Verified working: OS version Pident vers Person
X 4.51, 4.52 2.1beta10 <nig...@ohm.york.ac.uk>
X
Build comments: Nothing unusual
X
Install comments: Generally install into /usr/etc
X
Usage comments: Works as daemon or from inetd with wait/nowait
X We run as user bin, but as root would be fine.
SHAR_EOF
$shar_touch -am 0406140793 'pidentd-2.7/READMEs/README.riscos4' &&
chmod 0644 'pidentd-2.7/READMEs/README.riscos4' ||
$echo 'restore of' 'pidentd-2.7/READMEs/README.riscos4' 'failed'
if ( md5sum --help 2>&1 | grep 'sage: md5sum \[' ) >/dev/null 2>&1 \
&& ( md5sum --version 2>&1 | grep -v 'textutils 1.12' ) >/dev/null; then
md5sum -c << SHAR_EOF >/dev/null 2>&1 \
|| $echo 'pidentd-2.7/READMEs/README.riscos4:' 'MD5 check failed'
c86045086790dd3c7ed139b44f3b1360 pidentd-2.7/READMEs/README.riscos4
SHAR_EOF
else
shar_count="`LC_ALL= LC_CTYPE= LANG= wc -c < 'pidentd-2.7/READMEs/README.riscos4'`"
test 500 -eq "$shar_count" ||
$echo 'pidentd-2.7/READMEs/README.riscos4:' 'original size' '500,' 'current size' "$shar_count!"
fi
fi
# ============= pidentd-2.7/READMEs/README.sunos3 ==============
if test -f 'pidentd-2.7/READMEs/README.sunos3' && test "$first_param" != -c; then
$echo 'x -' SKIPPING 'pidentd-2.7/READMEs/README.sunos3' '(file already exists)'
else
$echo 'x -' extracting 'pidentd-2.7/READMEs/README.sunos3' '(text)'
sed 's/^X//' << 'SHAR_EOF' > 'pidentd-2.7/READMEs/README.sunos3' &&
Machine Type: SunOS 3.5 (other v3 SunOSs may work)
X
Make using: make sunos3
Make optimised: make "CFLAGS=-O" "LDFLAGS=-s" sunos3
X
Person(s) porting: Nigel Metheringham <nig...@ohm.york.ac.uk>
X [We are disposing of our Sun3s soon, so no further
X support will be done for this architecture]
X
Port date: 5 April, 1993
Verified working: OS version Pident vers Person
X 3.5 2.1beta10 <nig...@ohm.york.ac.uk>
X
Build comments: A link is needed to allow compilation (due to code in
X the sys/file.h include file). This can be put in
X place by executing:
X ln -s /usr/include/sys h
X in the current directory (ie top directory of pidentd).
X Gcc works OK - probably rather better than system cc.
X
Install comments: Generally install into /usr/etc
X Start from inetd (/etc/servers) (or as daemon if you
X prefer) Since this is an *old* BSD system, several of
X the inetd options are missing. You can only start it
X as a one shot daemon from inetd (edit /etc/servers),
X and you can specify no parameters.
X Remember there are limits on the number of lines in
X /etc/servers
X
Usage comments: Since inetd calls identd with a parameter made up of
X the calling IP and port address (identd does not use
X this parameter), identd drops one argument if there
X are no options set! To get round this (ie from the
X command line) specify at least one option.
SHAR_EOF
$shar_touch -am 0406140793 'pidentd-2.7/READMEs/README.sunos3' &&
chmod 0644 'pidentd-2.7/READMEs/README.sunos3' ||
$echo 'restore of' 'pidentd-2.7/READMEs/README.sunos3' 'failed'
if ( md5sum --help 2>&1 | grep 'sage: md5sum \[' ) >/dev/null 2>&1 \
&& ( md5sum --version 2>&1 | grep -v 'textutils 1.12' ) >/dev/null; then
md5sum -c << SHAR_EOF >/dev/null 2>&1 \
|| $echo 'pidentd-2.7/READMEs/README.sunos3:' 'MD5 check failed'
1cb166495e0b83aea0fa563bcaf39a7a pidentd-2.7/READMEs/README.sunos3
SHAR_EOF
else
shar_count="`LC_ALL= LC_CTYPE= LANG= wc -c < 'pidentd-2.7/READMEs/README.sunos3'`"
test 1375 -eq "$shar_count" ||
$echo 'pidentd-2.7/READMEs/README.sunos3:' 'original size' '1375,' 'current size' "$shar_count!"
fi
fi
# ============= pidentd-2.7/READMEs/README.sunos4 ==============
if test -f 'pidentd-2.7/READMEs/README.sunos4' && test "$first_param" != -c; then
$echo 'x -' SKIPPING 'pidentd-2.7/READMEs/README.sunos4' '(file already exists)'
else
$echo 'x -' extracting 'pidentd-2.7/READMEs/README.sunos4' '(text)'
sed 's/^X//' << 'SHAR_EOF' > 'pidentd-2.7/READMEs/README.sunos4' &&
Machine Type: Sun SunOS 4.*
X
Make using: make sunos4
Make optimised: make "CFLAGS=-O" "LDFLAGS=-s" sunos4
X
Person(s) porting: Peter Eriksson <p...@lysator.liu.se>
Port date: A long time ago...
Verified working: OS version(s) Pident vers Person
X 4.0.3, 4.1.1, 2.1beta10 <p...@lysator.liu.se>
X 4.1.3
X
Build comments: Nothing unusual
X
Install comments: Generally install into /usr/etc
X
Usage comments: Works as daemon or from inetd with wait/nowait
X We run as user sys, but as root would be fine.
SHAR_EOF
$shar_touch -am 0418023793 'pidentd-2.7/READMEs/README.sunos4' &&
chmod 0644 'pidentd-2.7/READMEs/README.sunos4' ||
$echo 'restore of' 'pidentd-2.7/READMEs/README.sunos4' 'failed'
if ( md5sum --help 2>&1 | grep 'sage: md5sum \[' ) >/dev/null 2>&1 \
&& ( md5sum --version 2>&1 | grep -v 'textutils 1.12' ) >/dev/null; then
md5sum -c << SHAR_EOF >/dev/null 2>&1 \
|| $echo 'pidentd-2.7/READMEs/README.sunos4:' 'MD5 check failed'
3a8b367f2e5c30646adc5022b6b7097f pidentd-2.7/READMEs/README.sunos4
SHAR_EOF
else
shar_count="`LC_ALL= LC_CTYPE= LANG= wc -c < 'pidentd-2.7/READMEs/README.sunos4'`"
test 504 -eq "$shar_count" ||
$echo 'pidentd-2.7/READMEs/README.sunos4:' 'original size' '504,' 'current size' "$shar_count!"
fi
fi
# ============= pidentd-2.7/READMEs/README.sunos5 ==============
if test -f 'pidentd-2.7/READMEs/README.sunos5' && test "$first_param" != -c; then
$echo 'x -' SKIPPING 'pidentd-2.7/READMEs/README.sunos5' '(file already exists)'
else
$echo 'x -' extracting 'pidentd-2.7/READMEs/README.sunos5' '(text)'
sed 's/^X//' << 'SHAR_EOF' > 'pidentd-2.7/READMEs/README.sunos5' &&
Please note that the Solaris 2 port of Pidentd is very dependant
on the version of Solaris. So when you upgrade to a new version of Solaris
you most probably also must upgrade the Pidentd server. You can always
find the latest version of Pidentd on ftp.lysator.liu.se in pub/ident/servers.
X
Some common problems that may occur when compiling under Solaris 2:
X
X * You use /usr/ucb/cc - NEVER ever EVER use that compiler
X
X * You use GCC, but didn't run "fixincludes" correctly when
X installing it
X
X * You use GCC and have just upgraded from Solaris 2.3 to 2.4
X (for example) and have forgotten to RERUN the "fixincludes".
X This just *MUST* do or things will fail in mysterious ways.
X
You may have to enable the "SOLARIS24_WORKAROUND" feature in the
file "src/kernel/sunos5.c" if you have problems getting "-b" and/or "-w"
to work correctly under Solaris 2.4. Please tell me if you do and it helps
you (send an email to p...@lysator.liu.se).
X
Casper Dik <cas...@fwi.uva.nl> says:
X
X I found a bug in Solaris 2.x inetd which may affect identd
X installations: if you change a tcp service from "nowait" to "wait" mode,
X inetd will still pass the connected socket (as happens in nowait
X mode) instead of the socket to do accept() on. The workaround
X is to first comment out the service and -HUP inetd, then reinstall
X the service as wait service and resend -HUP. Inetd apparently needs
X to forget all about this service. The symptom is accept returing
X errno 22.
X
SHAR_EOF
$shar_touch -am 0605200195 'pidentd-2.7/READMEs/README.sunos5' &&
chmod 0644 'pidentd-2.7/READMEs/README.sunos5' ||
$echo 'restore of' 'pidentd-2.7/READMEs/README.sunos5' 'failed'
if ( md5sum --help 2>&1 | grep 'sage: md5sum \[' ) >/dev/null 2>&1 \
&& ( md5sum --version 2>&1 | grep -v 'textutils 1.12' ) >/dev/null; then
md5sum -c << SHAR_EOF >/dev/null 2>&1 \
|| $echo 'pidentd-2.7/READMEs/README.sunos5:' 'MD5 check failed'
70164a019b910c9205a1c6c962848bb0 pidentd-2.7/READMEs/README.sunos5
SHAR_EOF
else
shar_count="`LC_ALL= LC_CTYPE= LANG= wc -c < 'pidentd-2.7/READMEs/README.sunos5'`"
test 1473 -eq "$shar_count" ||
$echo 'pidentd-2.7/READMEs/README.sunos5:' 'original size' '1473,' 'current size' "$shar_count!"
fi
fi
# ============= pidentd-2.7/READMEs/README.ultrix ==============
if test -f 'pidentd-2.7/READMEs/README.ultrix' && test "$first_param" != -c; then
$echo 'x -' SKIPPING 'pidentd-2.7/READMEs/README.ultrix' '(file already exists)'
else
$echo 'x -' extracting 'pidentd-2.7/READMEs/README.ultrix' '(binary)'
sed 's/^X//' << 'SHAR_EOF' | uudecode &&
begin 600 pidentd-2.7/READMEs/README.ultrix
<uuencoded_portion_removed>
'86=E"@H*"@HM
`
end
SHAR_EOF
$shar_touch -am 1130011293 'pidentd-2.7/READMEs/README.ultrix' &&
chmod 0644 'pidentd-2.7/READMEs/README.ultrix' ||
$echo 'restore of' 'pidentd-2.7/READMEs/README.ultrix' 'failed'
if ( md5sum --help 2>&1 | grep 'sage: md5sum \[' ) >/dev/null 2>&1 \
&& ( md5sum --version 2>&1 | grep -v 'textutils 1.12' ) >/dev/null; then
md5sum -c << SHAR_EOF >/dev/null 2>&1 \
|| $echo 'pidentd-2.7/READMEs/README.ultrix:' 'MD5 check failed'
89b716f5f2cca8c50516cb1b60506cdb pidentd-2.7/READMEs/README.ultrix
SHAR_EOF
else
shar_count="`LC_ALL= LC_CTYPE= LANG= wc -c < 'pidentd-2.7/READMEs/README.ultrix'`"
test 3112 -eq "$shar_count" ||
$echo 'pidentd-2.7/READMEs/README.ultrix:' 'original size' '3112,' 'current size' "$shar_count!"
fi
fi
# ============= pidentd-2.7/READMEs/README.unicos6 ==============
if test -f 'pidentd-2.7/READMEs/README.unicos6' && test "$first_param" != -c; then
$echo 'x -' SKIPPING 'pidentd-2.7/READMEs/README.unicos6' '(file already exists)'
else
$echo 'x -' extracting 'pidentd-2.7/READMEs/README.unicos6' '(text)'
sed 's/^X//' << 'SHAR_EOF' > 'pidentd-2.7/READMEs/README.unicos6' &&
Machine Type: Cray UNICOS 6
X
Make using: make unicos6
Make optimised: make "CFLAGS=-O" "LDFLAGS=-s" sunos6
X
Person(s) porting: Douglas Lee Schales <Doug.S...@sc.tamu.edu>
Port date: A long time ago...
Verified working: OS version(s) Pident vers Person
X 6.0.12 2.1beta.7 <Doug.S...@sc.tamu.edu>
X
Build comments: Nothing unusual
X
Install comments: Generally install into /usr/etc
X
Usage comments: Works as daemon or from inetd with wait/nowait
X
Known bugs: It returns the <uid> of the process owning the
X socket in question instead of the <ruid>. Ie,
X it returns "root" instead of the actual user
X when the user runs a setuid-root program like rsh..
SHAR_EOF
$shar_touch -am 0422173493 'pidentd-2.7/READMEs/README.unicos6' &&
chmod 0644 'pidentd-2.7/READMEs/README.unicos6' ||
$echo 'restore of' 'pidentd-2.7/READMEs/README.unicos6' 'failed'
if ( md5sum --help 2>&1 | grep 'sage: md5sum \[' ) >/dev/null 2>&1 \
&& ( md5sum --version 2>&1 | grep -v 'textutils 1.12' ) >/dev/null; then
md5sum -c << SHAR_EOF >/dev/null 2>&1 \
|| $echo 'pidentd-2.7/READMEs/README.unicos6:' 'MD5 check failed'
b326bb73bc533b9424204887552a238c pidentd-2.7/READMEs/README.unicos6
SHAR_EOF
else
shar_count="`LC_ALL= LC_CTYPE= LANG= wc -c < 'pidentd-2.7/READMEs/README.unicos6'`"
test 674 -eq "$shar_count" ||
$echo 'pidentd-2.7/READMEs/README.unicos6:' 'original size' '674,' 'current size' "$shar_count!"
fi
fi
# ============= pidentd-2.7/TODO ==============
if test -f 'pidentd-2.7/TODO' && test "$first_param" != -c; then
$echo 'x -' SKIPPING 'pidentd-2.7/TODO' '(file already exists)'
else
$echo 'x -' extracting 'pidentd-2.7/TODO' '(text)'
sed 's/^X//' << 'SHAR_EOF' > 'pidentd-2.7/TODO' &&
* Use the output from "uname -s" to auto-select the target in the Makefile.
X
* Write more ./READMEs/README.* files
X
* Implement more test programs in ./testdir
X
* Long and short command options.
X
* Implement a config file (/etc/identd.conf).
X
* Implement some way for an external program to register indirect
X pointers. For example a TCP/IP relaying daemon might wanna do this.
X So that the <Identifier> returned will look something like:
X
X 42 , 4711 : USERID : OTHER : foo (fubar.su!bar)
X
X or:
X
X 42 , 4711 : USERID : OTHER : foo (this.host.se!foo (fubar.su!bar))
X
X Probably should be implemented using a UNIX domain socket with access
X control.
X
* Implement some way to encrypt <Identifiers>.
X
SHAR_EOF
$shar_touch -am 0813210795 'pidentd-2.7/TODO' &&
chmod 0644 'pidentd-2.7/TODO' ||
$echo 'restore of' 'pidentd-2.7/TODO' 'failed'
if ( md5sum --help 2>&1 | grep 'sage: md5sum \[' ) >/dev/null 2>&1 \
&& ( md5sum --version 2>&1 | grep -v 'textutils 1.12' ) >/dev/null; then
md5sum -c << SHAR_EOF >/dev/null 2>&1 \
|| $echo 'pidentd-2.7/TODO:' 'MD5 check failed'
1f184567eae0f5fc5ca0131f45bf725f pidentd-2.7/TODO
SHAR_EOF
else
shar_count="`LC_ALL= LC_CTYPE= LANG= wc -c < 'pidentd-2.7/TODO'`"
test 710 -eq "$shar_count" ||
$echo 'pidentd-2.7/TODO:' 'original size' '710,' 'current size' "$shar_count!"
fi
fi
# ============= pidentd-2.7/doc/RFC1413 ==============
if test ! -d 'pidentd-2.7/doc'; then
$echo 'x -' 'creating directory' 'pidentd-2.7/doc'
mkdir 'pidentd-2.7/doc'
fi
if test -f 'pidentd-2.7/doc/RFC1413' && test "$first_param" != -c; then
$echo 'x -' SKIPPING 'pidentd-2.7/doc/RFC1413' '(file already exists)'
else
$echo 'x -' extracting 'pidentd-2.7/doc/RFC1413' '(text)'
sed 's/^X//' << 'SHAR_EOF' > 'pidentd-2.7/doc/RFC1413' &&
X
X
X
X
X
X
Network Working Group M. St. Johns
Request for Comments: 1413 US Department of Defense
Obsoletes: 931 February 1993
X
X
X Identification Protocol
X
Status of this Memo
X
X This RFC specifies an IAB standards track protocol for the Internet
X community, and requests discussion and suggestions for improvements.
X Please refer to the current edition of the "IAB Official Protocol
X Standards" for the standardization state and status of this protocol.
X Distribution of this memo is unlimited.
X
1. INTRODUCTION
X
X The Identification Protocol (a.k.a., "ident", a.k.a., "the Ident
X Protocol") provides a means to determine the identity of a user of a
X particular TCP connection. Given a TCP port number pair, it returns
X a character string which identifies the owner of that connection on
X the server's system.
X
X The Identification Protocol was formerly called the Authentication
X Server Protocol. It has been renamed to better reflect its function.
X This document is a product of the TCP Client Identity Protocol
X Working Group of the Internet Engineering Task Force (IETF).
X
2. OVERVIEW
X
X This is a connection based application on TCP. A server listens for
X TCP connections on TCP port 113 (decimal). Once a connection is
X established, the server reads a line of data which specifies the
X connection of interest. If it exists, the system dependent user
X identifier of the connection of interest is sent as the reply. The
X server may then either shut the connection down or it may continue to
X read/respond to multiple queries.
X
X The server should close the connection down after a configurable
X amount of time with no queries - a 60-180 second idle timeout is
X recommended. The client may close the connection down at any time;
X however to allow for network delays the client should wait at least
X 30 seconds (or longer) after a query before abandoning the query and
X closing the connection.
X
X
X
X
X
X
X
St. Johns [Page 1]
X
RFC 1413 Identification Protocol February 1993
X
X
3. RESTRICTIONS
X
X Queries are permitted only for fully specified connections. The
X query contains the local/foreign port pair -- the local/foreign
X address pair used to fully specify the connection is taken from the
X local and foreign address of query connection. This means a user on
X address A may only query the server on address B about connections
X between A and B.
X
4. QUERY/RESPONSE FORMAT
X
X The server accepts simple text query requests of the form:
X
X <port-on-server> , <port-on-client>
X
X where <port-on-server> is the TCP port (decimal) on the target (where
X the "ident" server is running) system, and <port-on-client> is the
X TCP port (decimal) on the source (client) system.
X
X N.B - If a client on host A wants to ask a server on host B about a
X connection specified locally (on the client's machine) as 23, 6191
X (an inbound TELNET connection), the client must actually ask about
X 6191, 23 - which is how the connection would be specified on host B.
X
X For example:
X
X 6191, 23
X
X The response is of the form
X
X <port-on-server> , <port-on-client> : <resp-type> : <add-info>
X
X where <port-on-server>,<port-on-client> are the same pair as the
X query, <resp-type> is a keyword identifying the type of response, and
X <add-info> is context dependent.
X
X The information returned is that associated with the fully specified
X TCP connection identified by <server-address>, <client-address>,
X <port-on-server>, <port-on-client>, where <server-address> and
X <client-address> are the local and foreign IP addresses of the
X querying connection -- i.e., the TCP connection to the Identification
X Protocol Server. (<port-on-server> and <port-on-client> are taken
X from the query.)
X
X For example:
X
X 6193, 23 : USERID : UNIX : stjohns
X 6195, 23 : ERROR : NO-USER
X
X
X
St. Johns [Page 2]
X
RFC 1413 Identification Protocol February 1993
X
X
5. RESPONSE TYPES
X
A response can be one of two types:
X
USERID
X
X In this case, <add-info> is a string consisting of an
X operating system name (with an optional character set
X identifier), followed by ":", followed by an
X identification string.
X
X The character set (if present) is separated from the
X operating system name by ",". The character set
X identifier is used to indicate the character set of the
X identification string. The character set identifier,
X if omitted, defaults to "US-ASCII" (see below).
X
X Permitted operating system names and character set
X names are specified in RFC 1340, "Assigned Numbers" or
X its successors.
X
X In addition to those operating system and character set
X names specified in "Assigned Numbers" there is one
X special case operating system identifier - "OTHER".
X
X Unless "OTHER" is specified as the operating system
X type, the server is expected to return the "normal"
X user identification of the owner of this connection.
X "Normal" in this context may be taken to mean a string
X of characters which uniquely identifies the connection
X owner such as a user identifier assigned by the system
X administrator and used by such user as a mail
X identifier, or as the "user" part of a user/password
X pair used to gain access to system resources. When an
X operating system is specified (e.g., anything but
X "OTHER"), the user identifier is expected to be in a
X more or less immediately useful form - e.g., something
X that could be used as an argument to "finger" or as a
X mail address.
X
X "OTHER" indicates the identifier is an unformatted
X character string consisting of printable characters in
X the specified character set. "OTHER" should be
X specified if the user identifier does not meet the
X constraints of the previous paragraph. Sending an
X encrypted audit token, or returning other non-userid
X information about a user (such as the real name and
X phone number of a user from a UNIX passwd file) are
X
X
X
St. Johns [Page 3]
X
RFC 1413 Identification Protocol February 1993
X
X
X both examples of when "OTHER" should be used.
X
X Returned user identifiers are expected to be printable
X in the character set indicated.
X
X The identifier is an unformatted octet string - - all
X octets are permissible EXCEPT octal 000 (NUL), 012 (LF)
X and 015 (CR). N.B. - space characters (040) following the
X colon separator ARE part of the identifier string and
X may not be ignored. A response string is still
X terminated normally by a CR/LF. N.B. A string may be
X printable, but is not *necessarily* printable.
X
ERROR
X
X For some reason the port owner could not be determined, <add-info>
X tells why. The following are the permitted values of <add-info> and
X their meanings:
X
X INVALID-PORT
X
X Either the local or foreign port was improperly
X specified. This should be returned if either or
X both of the port ids were out of range (TCP port
X numbers are from 1-65535), negative integers, reals or
X in any fashion not recognized as a non-negative
X integer.
X
X NO-USER
X
X The connection specified by the port pair is not
X currently in use or currently not owned by an
X identifiable entity.
X
X HIDDEN-USER
X
X The server was able to identify the user of this
X port, but the information was not returned at the
X request of the user.
X
X UNKNOWN-ERROR
X
X Can't determine connection owner; reason unknown.
X Any error not covered above should return this
X error code value. Optionally, this code MAY be
X returned in lieu of any other specific error code
X if, for example, the server desires to hide
X information implied by the return of that error
X
X
X
St. Johns [Page 4]
X
RFC 1413 Identification Protocol February 1993
X
X
X code, or for any other reason. If a server
X implements such a feature, it MUST be configurable
X and it MUST default to returning the proper error
X message.
X
X Other values may eventually be specified and defined in future
X revisions to this document. If an implementer has a need to specify
X a non-standard error code, that code must begin with "X".
X
X In addition, the server is allowed to drop the query connection
X without responding. Any premature close (i.e., one where the client
X does not receive the EOL, whether graceful or an abort should be
X considered to have the same meaning as "ERROR : UNKNOWN-ERROR".
X
FORMAL SYNTAX
X
X <request> ::= <port-pair> <EOL>
X
X <port-pair> ::= <integer> "," <integer>
X
X <reply> ::= <reply-text> <EOL>
X
X <EOL> ::= "015 012" ; CR-LF End of Line Indicator
X
X <reply-text> ::= <error-reply> | <ident-reply>
X
X <error-reply> ::= <port-pair> ":" "ERROR" ":" <error-type>
X
X <ident-reply> ::= <port-pair> ":" "USERID" ":" <opsys-field>
X ":" <user-id>
X
X <error-type> ::= "INVALID-PORT" | "NO-USER" | "UNKNOWN-ERROR"
X | "HIDDEN-USER" | <error-token>
X
X <opsys-field> ::= <opsys> [ "," <charset>]
X
X <opsys> ::= "OTHER" | "UNIX" | <token> ...etc.
X ; (See "Assigned Numbers")
X
X <charset> ::= "US-ASCII" | ...etc.
X ; (See "Assigned Numbers")
X
X <user-id> ::= <octet-string>
X
X <token> ::= 1*64<token-characters> ; 1-64 characters
X
X <error-token> ::= "X"1*63<token-characters>
X ; 2-64 chars beginning w/X
X
X
X
St. Johns [Page 5]
X
RFC 1413 Identification Protocol February 1993
X
X
X <integer> ::= 1*5<digit> ; 1-5 digits.
X
X <digit> ::= "0" | "1" ... "8" | "9" ; 0-9
X
X <token-characters> ::=
X <Any of these ASCII characters: a-z, A-Z,
X - (dash), .!@#$%^&*()_=+.,<>/?"'~`{}[]; >
X ; upper and lowercase a-z plus
X ; printables minus the colon ":"
X ; character.
X
X <octet-string> ::= 1*512<octet-characters>
X
X <octet-characters> ::=
X <any octet from 00 to 377 (octal) except for
X ASCII NUL (000), CR (015) and LF (012)>
X
Notes on Syntax:
X
X 1) To promote interoperability among variant
X implementations, with respect to white space the above
X syntax is understood to embody the "be conservative in
X what you send and be liberal in what you accept"
X philosophy. Clients and servers should not generate
X unnecessary white space (space and tab characters) but
X should accept white space anywhere except within a
X token. In parsing responses, white space may occur
X anywhere, except within a token. Specifically, any
X amount of white space is permitted at the beginning or
X end of a line both for queries and responses. This
X does not apply for responses that contain a user ID
X because everything after the colon after the operating
X system type until the terminating CR/LF is taken as
X part of the user ID. The terminating CR/LF is NOT
X considered part of the user ID.
X
X 2) The above notwithstanding, servers should restrict the
X amount of inter-token white space they send to the
X smallest amount reasonable or useful. Clients should
X feel free to abort a connection if they receive 1000
X characters without receiving an <EOL>.
X
X 3) The 512 character limit on user IDs and the 64
X character limit on tokens should be understood to mean
X as follows: a) No new token (i.e., OPSYS or ERROR-TYPE)
X token will be defined that has a length greater than 64
X and b) a server SHOULD NOT send more than 512 octets of
X user ID and a client MUST accept at least 512 octets of
X
X
X
St. Johns [Page 6]
X
RFC 1413 Identification Protocol February 1993
X
X
X user ID. Because of this limitation, a server MUST
X return the most significant portion of the user ID in
X the first 512 octets.
X
X 4) The character sets and character set identifiers should
X map directly to those defined in or referenced by RFC 1340,
X "Assigned Numbers" or its successors. Character set
X identifiers only apply to the user identification field
X - all other fields will be defined in and must be sent
X as US-ASCII.
X
X 5) Although <user-id> is defined as an <octet-string>
X above, it must follow the format and character set
X constraints implied by the <opsys-field>; see the
X discussion above.
X
X 6) The character set provides context for the client to
X print or store the returned user identification string.
X If the client does not recognize or implement the
X returned character set, it should handle the returned
X identification string as OCTET, but should in addition
X store or report the character set. An OCTET string
X should be printed, stored or handled in hex notation
X (0-9a-f) in addition to any other representation the
X client implements - this provides a standard
X representation among differing implementations.
X
6. Security Considerations
X
X The information returned by this protocol is at most as trustworthy
X as the host providing it OR the organization operating the host. For
X example, a PC in an open lab has few if any controls on it to prevent
X a user from having this protocol return any identifier the user
X wants. Likewise, if the host has been compromised the information
X returned may be completely erroneous and misleading.
X
X The Identification Protocol is not intended as an authorization or
X access control protocol. At best, it provides some additional
X auditing information with respect to TCP connections. At worst, it
X can provide misleading, incorrect, or maliciously incorrect
X information.
X
X The use of the information returned by this protocol for other than
X auditing is strongly discouraged. Specifically, using Identification
X Protocol information to make access control decisions - either as the
X primary method (i.e., no other checks) or as an adjunct to other
X methods may result in a weakening of normal host security.
X
X
X
X
St. Johns [Page 7]
X
RFC 1413 Identification Protocol February 1993
X
X
X An Identification server may reveal information about users,
X entities, objects or processes which might normally be considered
X private. An Identification server provides service which is a rough
X analog of the CallerID services provided by some phone companies and
X many of the same privacy considerations and arguments that apply to
X the CallerID service apply to Identification. If you wouldn't run a
X "finger" server due to privacy considerations you may not want to run
X this protocol.
X
7. ACKNOWLEDGEMENTS
X
X Acknowledgement is given to Dan Bernstein who is primarily
X responsible for renewing interest in this protocol and for pointing
X out some annoying errors in RFC 931.
X
References
X
X [1] St. Johns, M., "Authentication Server", RFC 931, TPSC, January
X 1985.
X
X [2] Reynolds, J., and J. Postel, "Assigned Numbers", STD 2, RFC 1340,
X USC/Information Sciences Institute, July 1992.
X
Author's Address
X
X Michael C. St. Johns
X DARPA/CSTO
X 3701 N. Fairfax Dr
X Arlington, VA 22203
X
X Phone: (703) 696-2271
X EMail: stj...@DARPA.MIL
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
X
St. Johns [Page 8]
X
SHAR_EOF
$shar_touch -am 0204173093 'pidentd-2.7/doc/RFC1413' &&
chmod 0644 'pidentd-2.7/doc/RFC1413' ||
$echo 'restore of' 'pidentd-2.7/doc/RFC1413' 'failed'
if ( md5sum --help 2>&1 | grep 'sage: md5sum \[' ) >/dev/null 2>&1 \
&& ( md5sum --version 2>&1 | grep -v 'textutils 1.12' ) >/dev/null; then
md5sum -c << SHAR_EOF >/dev/null 2>&1 \
|| $echo 'pidentd-2.7/doc/RFC1413:' 'MD5 check failed'
ced71cd04dc21eda2d2a071d1af8b255 pidentd-2.7/doc/RFC1413
SHAR_EOF
else
shar_count="`LC_ALL= LC_CTYPE= LANG= wc -c < 'pidentd-2.7/doc/RFC1413'`"
test 16292 -eq "$shar_count" ||
$echo 'pidentd-2.7/doc/RFC1413:' 'original size' '16292,' 'current size' "$shar_count!"
fi
fi
: || $echo 'restore of' 'pidentd-2.7/doc/TAP.doc' 'failed'
$echo 'End of part' '2,' 'continue with part' '3'
exit 0

Reply all
Reply to author
Forward
0 new messages