Ridentd 0.9.3b review
DownloadRidentd server application is meant for the totally paranoid that need access to servers that require ident and don't want to give an
|
|
Ridentd server application is meant for the totally paranoid that need access to servers that require ident and don't want to give any information about local users to the remote server or its other users.
Ridentd is a stand-alone replacement for identd that uses a random selection of a ispell dictionary to use as fake ident responses. The ident response is based on a (one-time randomly initialized) modulus of the local port in order to assure that one session will return the same identity during a TCP session.
The really paranoid may wish to start ridentd a few times a day from their cron in order to reseed both the random set of dictionary words and the port modulo. When using in the cron it is adviced to use the 'SILENT' option.
At this moment this software should be considdered release-ready for the Linux platform, beta for any other *nix platform. It depends on the availability of the 'strings' , 'ps' binaries, and the pressence of at least one ispell dictionary file.
What's New in This Release:
Addresses a serious locally exploitable symlink bug that allowed a random local file to be overwritten to with the process ID of the newly started daemon.
Ridentd 0.9.3b keywords