.\" $NetBSD: identd.8,v 1.17 2004/01/31 21:47:17 christos Exp $ .\" .\" This software is in the public domain. .\" Written by Peter Postma .\" .Dd January 31, 2004 .Dt IDENTD 8 .Os .Sh NAME .Nm identd .Nd TCP/IP Ident protocol server. .Sh SYNOPSIS .Nm .Op Fl 4 .Op Fl 6 .Op Fl a Ar address .Op Fl b .Op Fl c Ar charset .Op Fl e .Op Fl f Ar fallback .Op Fl F Ar format .Op Fl g Ar uid .Op Fl i .Op Fl I .Op Fl l .Op Fl L Ar username .Op Fl n .Op Fl N .Op Fl o Ar osname .Op Fl p Ar portno .Op Fl r .Op Fl t Ar seconds .Op Fl u Ar uid .Sh DESCRIPTION .Nm is a TCP/IP server which implements the user identification protocol as specified in RFC 1413. .Pp .Nm operates by looking up specific TCP/IP connections and returning information which may or may not be associated with the process owning the connection. .Pp The following options are available: .Bl -tag -width Ds .It Fl 4 Bind to IPv4 addresses only. (flag .Fl b only) .It Fl 6 Bind to IPv6 addresses only. (flag .Fl b only) .It Fl a Ar address Bind to the specified .Ar address . This may be an IPv4 or IPv6 address or even a hostname. If a hostname is specified then .Nm will resolve it to an address (or addresses) and will bind this address. (flag .Fl b only) .It Fl b Run in the background (as daemon). .It Fl c Ar charset Specfify an optional character set designator to be included in replies. .Ar charset should be a valid charset set as described in the .Tn MIME RFC in upper case characters. .It Fl e Return .Dq UNKNOWN-ERROR instead of the usual .Dq NO-USER or .Dq INVALID-PORT error reply's. .It Fl f Ar fallback Specify a .Ar fallback username. If the lookup fails then this username will be returned. This can be useful for when running this service on a NAT host. .It Fl F Ar format Specify the format to display info. The allowed format specifiers are: .in +.5i .nf %u print user name %U print user number %g print (primary) group name %G print (primary) group number %l print list of all groups by name %L print list of all groups by number .in -.5i .fi .Pp The lists of groups (%l, %L) are comma-separated, and start with the primary group which is not repeated. Any other characters (preceded by %, and those not preceded by it) are printed literally. The "default" format is %u, and you should not use anything else without using the flag .Ar -o OTHER . .It Fl g Ar gid Specify the group id number or name which the server should switch to after binding itself to the TCP/IP port. .It Fl i If the .Pa .ident file exists in the home directory of the identified user, return the username found in that file instead of the real username. If the username found in .Pa .ident is that of an existing user, then the real username will be returned. .It Fl I Same as .Fl i but without the restriction that the username in .Pa .ident must not match an existing user. .It Fl l Use syslog for logging. .It Fl L Ar username Specify a .Dq lie .Ar username . Return this name for all ident requests. .It Fl n Return numeric user IDs instead of usernames. .It Fl N Enable .Pa .noident files. If this file exists in the home directory of the identified user then return .Dq HIDDEN-USER instead of the normal USERID response. .It Fl o Ar osname Return .Ar osname instead of the default .Dq UNIX . .It Fl p Ar portno Specify an alternative port number where the server should run under. The default is port 113. (flag .Fl b only) .It Fl r Return a random name of alphanumeric characters. If the .Fl n flag is also enabled then a random number will be returned. .It Fl t Ar seconds Specify a timeout for the service. The default timeout is 30 seconds. .It Fl u Ar uid Specify the user id number or name which the server should switch to after binding itself to the TCP/IP port. .El .Sh EXAMPLES .Nm operates from .Xr inetd 8 or as standalone daemon. Put the following lines into .Xr inetd.conf 5 to enable .Nm as an IPv4 and IPv6 service via inetd: .Pp ident stream tcp nowait nobody /usr/libexec/identd identd -l .Pp ident stream tcp6 nowait nobody /usr/libexec/identd identd -l .Pp If you want to run .Nm as standalone daemon then please use the .Fl b flag (background). .Sh FILES /etc/inetd.conf .Sh SEE ALSO .Xr inetd 8 , .Xr inetd.conf 5