identd is a server which implements the
Identification Protocol as specified in RFC 1413.
identd operates by looking up specific
TCP/IP connections and returning the name of the user running the process
responsible for the connection.
The options are as follows:
identdto use IPv4 addresses only.
identdto use IPv6 addresses only.
- Do not daemonize. If this option is specified,
identdwill run in the foreground and log to stderr.
- Always return “UNKNOWN-ERROR” instead of the “NO-USER” or “INVALID-PORT” errors.
- Hide information about existing and non-existent users. This flag implies
- Hide the actual information about the user by providing an opaque token instead. This token is entered into the local system logs so that the administrator can later discover who the real user was.
- Listen on the specified address. By default
identdlistens on wildcard addresses.
- When replying with a user name or ID, first check for a file .noident in the user's home directory. If this file is accessible, return “HIDDEN-USER” instead of the normal USERID response.
- Always return UID numbers instead of usernames.
- Specifies the idle timeout for client connections, in seconds. The default timeout is 120 seconds.
M. St. Johns, Identification Protocol, RFC 1413, February 1993.
identd command was originally a
process run via inetd(8). It was rewritten for OpenBSD
5.4 as a persistent non-blocking daemon.