Package: pidentd
Version: 3.0.18-2
The ident daemon that comes with package 'pidentd' (which is also
installed with Debian Sarge by default, as it seems) does not give
information about connections that have been shut down in one
direction.
This produces problems with connections between eg 'spamc' and
'spamd --auth-ident' of package 'spamassassin' (cf bug 278030).
Scenario: Client ('spamc') sends and closes its writing end via
shutdown(sock, SHUT_WR);
yielding a connection state of
Proto Recv-Q Send-Q Local Address Foreign Address State
tcp 1507 0 127.0.0.1:783 127.0.0.1:39011 CLOSE_WAIT
tcp 0 0 127.0.0.1:39011 127.0.0.1:783 FIN_WAIT1
which the server ('spamd') will try to verify via 'ident', yielding
39011 , 783 : ERROR : NO-USER
as 'pidentd' only seems to check ESTABLISHED connections.
The 'gidentd' package suffers the same problem (I'm about to file
a bug report on that one, too).
Other identd variants seem to deal with this situation correctly,
among them 'bidentd' and 'oidentd' (the 'midentd' package did
not work at all for me).
Cheers,
Alex
--
To UNSUBSCRIBE, email to [EMAIL PROTECTED]
with a subject of "unsubscribe". Trouble? Contact [EMAIL PROTECTED]
