nanog mailing list archives

Suggestion for improved identD

From: Ehud Gavron <GAVRON () ACES COM>
Date: Tue, 19 May 1998 15:36:43 -0700 (MST)

Suggestion:     PPP access devices intercept identD requests
                and return the authenticated access string.

Reasoning:      Modern ``stacks'' used by end-users -- especially
                those on throwaway accounts, fake any identD response.
                This makes tracking those people tougher.

Methods:        1: identD v2, new port, intercepted by access devices
                   which support it.

                2: modification to hosts requirement RFCs, making
                   access devices responsible for intercepting identD
                   requests to their PPP clients.

                3: a security RFC ``suggesting'' 1 or 2

Thoughts appreciated, as are comments, flames, blames, and anything
of some content.

Ehud
gavron () aces com

p.s. new beta traceroute at ftp.aces.com  cd pub/software/traceroute/beta

Current thread:

Suggestion for improved identD Ehud Gavron (May 19)
- Re: Suggestion for improved identD Daniel Reed (May 19)
- Re: Suggestion for improved identD Troy Davis (May 19)
  - Re: Suggestion for improved identD Daniel Reed (May 19)
    - Re: Suggestion for improved identD Christopher Neill (May 20)
    - Re: Suggestion for improved identD Dalvenjah FoxFire (May 20)
    - Message not available
    - Re: Suggestion for improved identD Jay R. Ashworth (May 20)
    - Re: Suggestion for improved identD Dalvenjah FoxFire (May 20)
  - Re: Suggestion for improved identD Studded (May 20)
- Re: Suggestion for improved identD Phil Howard (May 19)
  - Re: Suggestion for improved identD Ehud Gavron (May 19)

(Thread continues...)