icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons icons_061

Identd Service Detection

Low

Synopsis

The remote host may give an attacker information useful for future attacks.

Description

The remote host is running an ident (also known as 'auth') daemon. The 'ident' service provides sensitive information to potential attackers. It mainly says which accounts are running which services. This helps attackers to focus on valuable services (those owned by root). If you do not use this service, disable it.

Solution

Under Unix systems, comment out the 'auth' or 'ident' line in /etc/inetd.conf and restart inetd.