ident in linux

[Nothinman]

also in hosts.allow should it be 113:ALL or ALL:113? i tried both, and did kill -HUPs each time and still nothing

I believe it should be ident:ALL.

And I don't believe xinetd responds to SIGHUP like inetd does, do a full restart of it with /etc/init.d/xinetd restart.

 

[Barnaby W. Füi]

nm

 

[Barnaby W. Füi]

dammit nothinman i thought you had it there, i did what you said, still no ident working

 

[Nothinman]

First check for something in /var/logs that may tell you what's wrong.

Also make sure there's no firewalling up with 'ipchains -L'.

Then make sure something is listening on the ident port with 'netstat -atp'.

 

[Barnaby W. Füi]

/var/logs/ does not exist, i guess you meant /var/log/ which does? lots of crap, but nothing with xinetd or ident or anything related.

ipchains -L: "not a valid command blah blah blah"

netstat -atp got me this:

===========
===========
===========[Bitch@c1816619-b log]$ netstat -atp
(Not all processes could be identified, non-owned process info
will not be shown, you would have to be root to see it all.)
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 *:32768 *:* LISTEN -
tcp 0 0 *:33476 *:* LISTEN 2042/bx
tcp 0 0 *:sunrpc *:* LISTEN -
tcp 0 0 *:x11 *:* LISTEN -
tcp 0 0 *:ident *:* LISTEN -
tcp 0 0 *:33908 *:* LISTEN 2261/bx
tcp 0 0 *:ssh *:* LISTEN -
tcp 0 0 c1816619-b:smtp *:* LISTEN -
tcp 0 36 c1829911-a.moline:34020 irc2.lightning.net:ircd LAST_ACK -
tcp 0 36 c1829911-a.moline:33992 irc2.lightning.net:ircd LAST_ACK -
tcp 0 0 c1829911-a.moline:34024 irc1.lightning.net:ircd ESTABLISHED 2261/bx
tcp 0 0 c1829911-a.moline:34023 irc1.lightning.net:ircd ESTABLISHED 2042/bx
tcp 0 95 c1829911-a.moline:33978 irc1.lightning.net:ircd LAST_ACK -
tcp 0 0 c1829911-a.moline:33909 toc-m01.blue.aol.c:9898 ESTABLISHED 2262/gaim
tcp 0 0 c1829911-a.moline:34004 images.anandtech.c:http ESTABLISHED 2164/opera
tcp 0 0 c1829911-a.moline:34005 images.anandtech.c:http ESTABLISHED 2164/opera
tcp 0 0 c1829911-a.moline:33146 irc.Prison.NET:ircd ESTABLISHED 1392/bx
=========
=========
=========

edit: hey i get the feeling i should have done that as root?

another edit: okay i did it as root heres what i got:

================================
================================
================================
Active Internet connections (servers and established)
Proto Recv-Q Send-Q Local Address Foreign Address State PID/Program name
tcp 0 0 *:32768 *:* LISTEN 615/rpc.statd
tcp 0 0 *:sunrpc *:* LISTEN 600/portmap
tcp 0 0 *:x11 *:* LISTEN 1004/X
tcp 0 0 *:ident *:* LISTEN 2230/xinetd
tcp 0 0 *:ssh *:* LISTEN 775/sshd
tcp 0 0 c1816619-b:smtp *:* LISTEN 860/sendmail: accep
tcp 0 36 c1829911-a.moline:34041 irc2.lightning.net:ircd LAST_ACK -
tcp 0 0 c1829911-a.moline:33909 toc-m01.blue.aol.c:9898 ESTABLISHED 2262/gaim
tcp 0 0 c1829911-a.moline:33146 irc.Prison.NET:ircd ESTABLISHED 1392/bx
tcp 0 0 c1829911-a.moline:34066 forums.anandtech.c:http ESTABLISHED 2164/opera
tcp 0 0 c1829911-a.moline:34067 forums.anandtech.c:http ESTABLISHED 2164/opera

=============================
=============================
=============================

 

[n0cmonkey]

<< I believe it should be ident:ALL. >>



I thought that could go either way... By service name or port #.

The netstat shows ident sitting there waiting for a connection. Try connecting to that port and see what it does.

 

[Nothinman]

I thought that could go either way... By service name or port #.

Honestly I'm not sure, I always use ipchains for that.

But like n0c says xinetd is listening so try connectiong (netcat or telnet) and see if you get anything, also oident or xinetd should log something if there's a problem. oidentd also logs when it successfully masq's an ident request, not sure if it does a normal one too.

 

[Barnaby W. Füi]

how do i connect to it?

something like "telnet localhost:ident"?

 

[n0cmonkey]

telnet <EXTERNAL_IP> 113

No <>'s

 

[Barnaby W. Füi]

[Bitch@c1816619-b Bitch]$ telnet x.x.x.x
Trying x.x.x.x...
Connected to x.x.x.x.
Escape character is '^]'.
Connection closed by foreign host.

[Bitch@c1816619-b Bitch]$ telnet x.x.x.x ident
Trying x.x.x.x...
Connected to x.x.x.x.
Escape character is '^]'.
Connection closed by foreign host.

 

[Nothinman]

Posting your IP may not have been the best thing in the world, I would suggest you edit that post if possible.

But since it was there I tried and also got a connection refused. That could mean a few things:

1) You changed xinetd back and it's not setup for ident anymore
2) You have firewalling with ipchains or iptables blocking connections
3) You have a broadband router blocking connections
4) Your ISP is blocking ident connections (very unlikely)

Maybe some others but those are the most likely IMHO.

 

[Barnaby W. Füi]

i was going to x out my ip but then i figure big deal, it's not hard to get someones ip anyways, (hello irc???), then again i really dont have any idea what i'm doing as far as a firewall goes in linux, maybe i will edit it whatever



<< 1) You changed xinetd back and it's not setup for ident anymore
2) You have firewalling with ipchains or iptables blocking connections
3) You have a broadband router blocking connections
4) Your ISP is blocking ident connections (very unlikely) >>



1. huh uh
2. i have never messed w/ either, would they do that by default?
3. no
4. no because in windows ident works fine