[926] in linux-security and linux-alert archive
Re: [linux-security] about in.identd
daemon@ATHENA.MIT.EDU (Jordy)
Thu Jul 18 13:44:42 1996
Date: Thu, 18 Jul 1996 02:20:56 -0500 (CDT)
From: Jordy <jordy@newport.thirdwave.net>
To: "Alexander O. Yuriev" <alex@bach.cis.temple.edu>
cc: linux-security@tarsier.cv.nrao.edu
In-Reply-To: <199607171817.OAA11808@bach.cis.temple.edu>
>
> auth 113/tcp ident # User Verification
i have a very simple question. why does identd even need to be running as
root? you don't need root permissions to lookup who owns a port, and there
are a few other programs that inetd spawns that bind to ports under 1024
that don't run as root [systat comes to mind].
so why run it as root? are we just asking for trouble?