• Telnet

    From Big Bad Bob@21:1/5 to Richard Kettlewell on Tue Sep 7 10:21:04 2021
    On 2021-07-29 12:38, Richard Kettlewell wrote:
    "nelso...@gmail.com" <nelsonse48@gmail.com> writes:
    I want to telnet from my rpi (buster) to another computer as a 'VT100'
    (or similar, vt102 etc) terminal. I don't want to mess up my
    lxterminal for rpi use. Suggestions?

    Isn’t xterm a superset of vt100? I’m not sure why you think you need to do anything special.


    might have to experiment a bit with TERM/term. SHould work. Check any
    compat settings in the menu.

    You could also install a different xterm-like application and run THAT
    one. Or, my favorite, run lxterminal as a DIFFERENT user, and keep
    those settings separate from the normal ones. (how to do that, think of
    it as an exercise in "know Linux")


    --
    (aka 'Bombastic Bob' in case you wondered)

    'Feeling with my fingers, and thinking with my brain' - me

    'your story is so touching, but it sounds just like a lie'
    "Straighten up and fly right"

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From randon@21:1/5 to Tauno Voipio on Sun Oct 17 01:02:06 2021
    On 2021-07-30 10:40 a.m., Tauno Voipio wrote:
    On 29.7.21 22.12, nelso...@gmail.com wrote:
    I want to telnet from my rpi (buster) to another computer as a 'VT100'
    (or similar, vt102 etc) terminal.  I don't want to mess up my
    lxterminal for rpi use.  Suggestions?
       --Steve



    It seems that a Telnet client is not in the standard install
    of Raspbian (Raspi OS). You can install it:

      sudo apt install telnet

    After installation, just start it from the terminal:

      telnet tar_get_machine_ip_or_name

    For connecting to another computer, you do not need
    the Telnet server (daemon).


    For modern purposes you really shouldn't be using telnet. You can enable
    vt100 emulation mode in most ssh software - for instance putty offers
    vt100 compatibility mode in the "settings" panel. kterm also offers
    vt100 mode via a command flag iirc.

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Scott Alfter@21:1/5 to randon@nimbulus.xyz on Mon Oct 18 01:41:05 2021
    In article <c87cc99f-5fb5-2988-ac09-c979633def6e@nimbulus.xyz>,
    randon <randon@nimbulus.xyz> wrote:
    On 2021-07-30 10:40 a.m., Tauno Voipio wrote:
    On 29.7.21 22.12, nelso...@gmail.com wrote:
    I want to telnet from my rpi (buster) to another computer as a 'VT100'
    (or similar, vt102 etc) terminal.  I don't want to mess up my
    lxterminal for rpi use.  Suggestions?
       --Steve



    It seems that a Telnet client is not in the standard install
    of Raspbian (Raspi OS). You can install it:

      sudo apt install telnet

    After installation, just start it from the terminal:

      telnet tar_get_machine_ip_or_name

    For connecting to another computer, you do not need
    the Telnet server (daemon).


    For modern purposes you really shouldn't be using telnet. You can enable >vt100 emulation mode in most ssh software - for instance putty offers
    vt100 compatibility mode in the "settings" panel. kterm also offers
    vt100 mode via a command flag iirc.

    I'm pretty sure that's widespread knowledge by now...has been for probabbly
    at least 20 years. That said, there are plenty of devices out there that
    don't support ssh: old 8-bit computers serving up a BBS through an ESP8266
    on the serial port, not-so-old managed network equipment (I have a bunch of older Cisco gear at work that doesn't speak ssh), etc. As long as you're
    aware of the security implications and take steps to mitigate what you can (those switches at work can't be accessed from outside our network, for instance), the world isn't going to end if you telnet in to something.

    _/_
    / v \ Scott Alfter (remove the obvious to send mail)
    (IIGS( https://alfter.us/ Top-posting!
    \_^_/ >What's the most annoying thing on Usenet?

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Paul Hayton@21:1/5 to All on Mon Oct 18 19:52:44 2021
    On 18 Oct 2021 at 01:41a, Scott Alfter pondered and said...

    I'm pretty sure that's widespread knowledge by now...has been for probabbly at least 20 years. That said, there are plenty of devices out there that don't support ssh: old 8-bit computers serving up a BBS
    through an ESP8266 on the serial port, not-so-old managed network

    [snip]

    accessed from outside our network, for instance), the world isn't going
    to end if you telnet in to something.

    _/_
    / v \ Scott Alfter (remove the obvious to send mail)
    (IIGS( https://alfter.us/ Top-posting!
    \_^_/ >What's the most annoying thing on Usenet?

    Nice signature BTW

    Agree, there are still BBS running telnet around the globe but also offering SSH too.

    I'm typing this reply from one now :)

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Andy Burns@21:1/5 to Scott Alfter on Mon Oct 18 08:41:33 2021
    Scott Alfter wrote:

    there are plenty of devices out there that don't support ssh: old 8-bit computers serving up a BBS through an ESP8266 on the serial port

    The ESP could handle the SSH and just send/receive terminal traffic on the serial port ... I don't know if puTTY's ANSI emulation is as good as telix/procomm?

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From The Natural Philosopher@21:1/5 to Andy Burns on Mon Oct 18 13:19:28 2021
    On 18/10/2021 08:41, Andy Burns wrote:
    Scott Alfter wrote:

    there are plenty of devices out there that don't support ssh: old 8-bit
    computers serving up a BBS through an ESP8266 on the serial port

    The ESP could handle the SSH and just send/receive terminal traffic on
    the serial port ... I don't know if puTTY's ANSI emulation is as good as telix/procomm?

    Telnet was dangerous on a student network formed of coaxial cable...you
    could sniff passwords.

    On a switched network, you can't.
    Wifi is more problematic, but its fairly well encrypted.

    On a public network - well if people are to be believed every man and
    his dog from the CCP to the CIA are sniffing everything, so remember to
    put on a good show with lots of references to assassinating the
    president and starting a Jihad in your local boy scout camp.


    --
    "It is an established fact to 97% confidence limits that left wing
    conspirators see right wing conspiracies everywhere"

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Ahem A Rivet's Shot@21:1/5 to The Natural Philosopher on Mon Oct 18 14:27:31 2021
    On Mon, 18 Oct 2021 13:19:28 +0100
    The Natural Philosopher <tnp@invalid.invalid> wrote:

    On a public network - well if people are to be believed every man and
    his dog from the CCP to the CIA are sniffing everything, so remember to
    put on a good show with lots of references to assassinating the
    president and starting a Jihad in your local boy scout camp.

    Did the semtex arrive safely ? The plutonium is delayed a bit but
    it will be coming. Anthrax is out of stock I'm afraid.

    --
    Steve O'Hara-Smith
    Odds and Ends at http://www.sohara.org/

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From The Natural Philosopher@21:1/5 to Ahem A Rivet's Shot on Mon Oct 18 14:59:21 2021
    On 18/10/2021 14:27, Ahem A Rivet's Shot wrote:
    On Mon, 18 Oct 2021 13:19:28 +0100
    The Natural Philosopher <tnp@invalid.invalid> wrote:

    On a public network - well if people are to be believed every man and
    his dog from the CCP to the CIA are sniffing everything, so remember to
    put on a good show with lots of references to assassinating the
    president and starting a Jihad in your local boy scout camp.

    Did the semtex arrive safely ? The plutonium is delayed a bit but
    it will be coming. Anthrax is out of stock I'm afraid.

    Well there is a local shortage of revolutionaries anyway, so we are in
    no hurry...


    --
    New Socialism consists essentially in being seen to have your heart in
    the right place whilst your head is in the clouds and your hand is in
    someone else's pocket.

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Folderol@21:1/5 to The Natural Philosopher on Mon Oct 18 16:19:00 2021
    On Mon, 18 Oct 2021 14:59:21 +0100
    The Natural Philosopher <tnp@invalid.invalid> wrote:

    On 18/10/2021 14:27, Ahem A Rivet's Shot wrote:
    On Mon, 18 Oct 2021 13:19:28 +0100
    The Natural Philosopher <tnp@invalid.invalid> wrote:

    On a public network - well if people are to be believed every man and
    his dog from the CCP to the CIA are sniffing everything, so remember to >>> put on a good show with lots of references to assassinating the
    president and starting a Jihad in your local boy scout camp.

    Did the semtex arrive safely ? The plutonium is delayed a bit but
    it will be coming. Anthrax is out of stock I'm afraid.

    Well there is a local shortage of revolutionaries anyway, so we are in
    no hurry...

    Really? There doesn't seem to be a shortage of revolting people round here.

    --
    Basic

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From The Natural Philosopher@21:1/5 to Folderol on Mon Oct 18 16:51:54 2021
    On 18/10/2021 16:19, Folderol wrote:
    On Mon, 18 Oct 2021 14:59:21 +0100
    The Natural Philosopher <tnp@invalid.invalid> wrote:

    On 18/10/2021 14:27, Ahem A Rivet's Shot wrote:
    On Mon, 18 Oct 2021 13:19:28 +0100
    The Natural Philosopher <tnp@invalid.invalid> wrote:

    On a public network - well if people are to be believed every man and
    his dog from the CCP to the CIA are sniffing everything, so remember to >>>> put on a good show with lots of references to assassinating the
    president and starting a Jihad in your local boy scout camp.

    Did the semtex arrive safely ? The plutonium is delayed a bit but
    it will be coming. Anthrax is out of stock I'm afraid.

    Well there is a local shortage of revolutionaries anyway, so we are in
    no hurry...

    Really? There doesn't seem to be a shortage of revolting people round here.

    I find it helps to avoid the supermarkets...

    --
    I would rather have questions that cannot be answered...
    ...than to have answers that cannot be questioned

    Richard Feynman

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From druck@21:1/5 to Scott Alfter on Mon Oct 18 16:39:29 2021
    On 18/10/2021 02:41, Scott Alfter wrote:
    In article <c87cc99f-5fb5-2988-ac09-c979633def6e@nimbulus.xyz>,
    randon <randon@nimbulus.xyz> wrote:
    For modern purposes you really shouldn't be using telnet.

    I'm pretty sure that's widespread knowledge by now...has been for probabbly at least 20 years. That said, there are plenty of devices out there that don't support ssh: old 8-bit computers serving up a BBS through an ESP8266
    on the serial port, not-so-old managed network equipment (I have a bunch of older Cisco gear at work that doesn't speak ssh), etc. As long as you're aware of the security implications and take steps to mitigate what you can (those switches at work can't be accessed from outside our network, for instance), the world isn't going to end if you telnet in to something.

    It's one thing having old telnet servers when they are the only remote
    shell supported on legacy devices, it's quite another to enable a telnet
    server on a modern system when you should be sshd.

    ---druck

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Richard Falken@21:1/5 to All on Mon Oct 18 10:24:41 2021
    Re: Re: Telnet
    By: The Natural Philosopher to Andy Burns on Mon Oct 18 2021 01:19 pm

    On a switched network, you can't.
    Wifi is more problematic, but its fairly well encrypted.

    Switches vary greatly in quality.

    Most you can trick into serving somebody else's traffic to you via arp poisoning or
    some other nift trick.

    This is very useful if you are trying to send an important college essay and your flat
    mates are preventing you from doing so by consuming all the bandwidth via porn torrent
    downloads. You may use arp poisoning to redirect their traffic to a router you control
    and throttle the connection so the network is usable by everybody else.

    --
    gopher://gopher.richardfalken.com/1/richardfalken

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Ahem A Rivet's Shot@21:1/5 to Folderol on Mon Oct 18 18:00:57 2021
    On Mon, 18 Oct 2021 16:19:00 +0100
    Folderol <general@musically.me.uk> wrote:

    Really? There doesn't seem to be a shortage of revolting people round
    here.

    Leave them on the side of the plate and stop complaining.

    --
    Steve O'Hara-Smith
    Odds and Ends at http://www.sohara.org/

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Joe@21:1/5 to randon on Tue Oct 19 17:27:03 2021
    On Sun, 17 Oct 2021 01:02:06 -0400
    randon <randon@nimbulus.xyz> wrote:



    For modern purposes you really shouldn't be using telnet.

    Not for actual communication, no. But as a quick and dirty means of
    checking for a running server, and usually seeing the server's banner,
    it's difficult to beat. I've also been known to test SMTP servers that
    way.

    You can
    enable vt100 emulation mode in most ssh software - for instance putty
    offers vt100 compatibility mode in the "settings" panel. kterm also
    offers vt100 mode via a command flag iirc.

    And do they use the same commands as the telnet client? The ones I've
    been using for decades?

    --
    Joe

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Joe@21:1/5 to The Natural Philosopher on Tue Oct 19 17:21:01 2021
    On Mon, 18 Oct 2021 13:19:28 +0100
    The Natural Philosopher <tnp@invalid.invalid> wrote:

    On 18/10/2021 08:41, Andy Burns wrote:
    Scott Alfter wrote:

    there are plenty of devices out there that don't support ssh: old
    8-bit computers serving up a BBS through an ESP8266 on the serial
    port

    The ESP could handle the SSH and just send/receive terminal traffic
    on the serial port ... I don't know if puTTY's ANSI emulation is as
    good as telix/procomm?

    Telnet was dangerous on a student network formed of coaxial
    cable...you could sniff passwords.

    On a switched network, you can't.
    Wifi is more problematic, but its fairly well encrypted.

    On a public network - well if people are to be believed every man and
    his dog from the CCP to the CIA are sniffing everything, so remember
    to put on a good show with lots of references to assassinating the
    president and starting a Jihad in your local boy scout camp.



    By all means pull the tiger's tail. But he takes a dim view of jokers
    and has far bigger teeth than you.

    --
    Joe

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Andy Burns@21:1/5 to Joe on Tue Oct 19 17:43:29 2021
    Joe wrote:

    randon <randon@nimbulus.xyz> wrote:

    For modern purposes you really shouldn't be using telnet.

    Not for actual communication, no. But as a quick and dirty means of
    checking for a running server, and usually seeing the server's banner,
    it's difficult to beat. I've also been known to test SMTP servers that
    way.

    Though it's not unusual nowadays to find an SMTP server that gets upset at the slow speed a human can turn around the commands ...

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Joe@21:1/5 to Andy Burns on Tue Oct 19 19:25:19 2021
    On Tue, 19 Oct 2021 17:43:29 +0100
    Andy Burns <usenet@andyburns.uk> wrote:

    Joe wrote:

    randon <randon@nimbulus.xyz> wrote:

    For modern purposes you really shouldn't be using telnet.

    Not for actual communication, no. But as a quick and dirty means of checking for a running server, and usually seeing the server's
    banner, it's difficult to beat. I've also been known to test SMTP
    servers that way.

    Though it's not unusual nowadays to find an SMTP server that gets
    upset at the slow speed a human can turn around the commands ...



    Yes, possibly, though my server asks for an ident from connecting
    SMTP servers. Nobody runs an ident server nowadays, so a timeout of
    thirty seconds is imposed before the transaction continues.

    Only spammers drop out in the timeout. As far as I'm aware, I've never
    lost an email because a legitimate SMTP server will not wait for thirty seconds.

    --
    Joe

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Richard Kettlewell@21:1/5 to Eli the Bearded on Tue Oct 19 22:37:00 2021
    Eli the Bearded <*@eli.users.panix.com> writes:
    Joe <joe@jretrading.com> wrote:
    Yes, possibly, though my server asks for an ident from connecting
    SMTP servers. Nobody runs an ident server nowadays, so a timeout of
    thirty seconds is imposed before the transaction continues.

    What do you do if the ident server replies?

    $ grep ^ident /etc/services
    ident 113/tcp
    identify 2987/tcp # identify
    identify 2987/udp # identify
    $ telnet localhost 113
    Trying 127.0.0.1...
    Connected to localhost.
    Escape character is '^]'.

    jddj
    0 , 0 : ERROR : X-INVALID-REQUEST
    Connection closed by foreign host.
    $

    I don't know how to speak the ident protocol, but it is running on
    this machine. My recollection is you feed it an IP address and port
    and it tells you the identity of the user who has opened the connection.
    I know that the default Apache log entry has a field for identd
    value, to be compatible with NCSA httpd, but I don't think anyone
    enables the ident module these days.

    https://datatracker.ietf.org/doc/html/rfc1413

    --
    https://www.greenend.org.uk/rjk/

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Eli the Bearded@21:1/5 to joe@jretrading.com on Tue Oct 19 21:19:43 2021
    In comp.sys.raspberry-pi, Joe <joe@jretrading.com> wrote:
    Andy Burns <usenet@andyburns.uk> wrote:
    Joe wrote:
    randon <randon@nimbulus.xyz> wrote:
    For modern purposes you really shouldn't be using telnet.

    Not to telnetd servers probably, but it has other uses. And the post
    you replied to did mention not needing a telnet daemon.

    Not for actual communication, no. But as a quick and dirty means of
    checking for a running server, and usually seeing the server's
    banner, it's difficult to beat. I've also been known to test SMTP
    servers that way.

    And nntp, and web, and redis, and dictd, and ...

    Though it's not unusual nowadays to find an SMTP server that gets
    upset at the slow speed a human can turn around the commands ...

    Can't say I've noticed that, but I don't do much raw SMTP. I've seen
    that with NNTP.

    Yes, possibly, though my server asks for an ident from connecting
    SMTP servers. Nobody runs an ident server nowadays, so a timeout of
    thirty seconds is imposed before the transaction continues.

    What do you do if the ident server replies?

    $ grep ^ident /etc/services
    ident 113/tcp
    identify 2987/tcp # identify
    identify 2987/udp # identify
    $ telnet localhost 113
    Trying 127.0.0.1...
    Connected to localhost.
    Escape character is '^]'.

    jddj
    0 , 0 : ERROR : X-INVALID-REQUEST
    Connection closed by foreign host.
    $

    I don't know how to speak the ident protocol, but it is running on
    this machine. My recollection is you feed it an IP address and port
    and it tells you the identity of the user who has opened the connection.
    I know that the default Apache log entry has a field for identd
    value, to be compatible with NCSA httpd, but I don't think anyone
    enables the ident module these days.

    Only spammers drop out in the timeout. As far as I'm aware, I've never
    lost an email because a legitimate SMTP server will not wait for thirty seconds.

    "tar-piting" SMTP servers are not unknown, specifically to slow down
    spammers by exercising their slow talker acceptance.

    https://www.youtube.com/watch?v=B2g_TCYuIAM

    Elijah
    ------
    fingerd is also running here

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Eli the Bearded@21:1/5 to invalid@invalid.invalid on Tue Oct 19 22:49:00 2021
    In comp.sys.raspberry-pi, Richard Kettlewell <invalid@invalid.invalid> wrote:
    Eli the Bearded <*@eli.users.panix.com> writes:
    I don't know how to speak the ident protocol, but it is running on
    this machine. My recollection is you feed it an IP address and port
    and it tells you the identity of the user who has opened the connection.
    I know that the default Apache log entry has a field for identd
    value, to be compatible with NCSA httpd, but I don't think anyone
    enables the ident module these days.
    https://datatracker.ietf.org/doc/html/rfc1413

    I have no serious interest in learning how to do ident lookups. They
    are meaningless unless you can trust the site operator to enforce
    them to be accurate. The last time I needed to use a site that checked
    ident was probably in the 1990s.

    Here's the Apache module that I don't think anyone uses:

    https://httpd.apache.org/docs/2.4/mod/mod_ident.html

    There are "zarro" bugs reported for mod_ident, and it isn't mentioned
    once in the 300k CHANGES_2.4 file, going back to Apache 2.3.0-dev.
    There's one mention in the 2.2.x changes, where it is moved from core to
    it's own module as part of the 2.1.1 changes. The last real change
    was in Apache 2.0.27, where a bug was fixed that was causing it to
    always "bungling" the request thus ensuring a "nobody" response.

    Elijah
    ------
    betting the bungling happened on the path from 1.x Apache to 2.x Apache

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Andy Burns@21:1/5 to Joe on Wed Oct 20 10:48:29 2021
    Joe wrote:

    Andy Burns wrote:

    it's not unusual nowadays to find an SMTP server that gets
    upset at the slow speed a human can turn around the commands ...

    Yes, possibly, though my server asks for an ident from connecting
    SMTP servers. Nobody runs an ident server nowadays, so a timeout of
    thirty seconds is imposed before the transaction continues.

    ident is one of the few protocols I tend to configure firewalls to send an active reject, rather than a silent drop, but that was a habit developed 15+ years ago, no idea how many ident requests get sent nowadays.

    Only spammers drop out in the timeout. As far as I'm aware, I've never
    lost an email because a legitimate SMTP server will not wait for thirty seconds.

    I was talking more about the SMTP server getting upset if you don't e.g. send an RCPT TO: within a second or two after the MAIL FROM:

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Joe@21:1/5 to Eli the Bearded on Wed Oct 20 17:48:19 2021
    On Tue, 19 Oct 2021 21:19:43 -0000 (UTC)
    Eli the Bearded <*@eli.users.panix.com> wrote:

    In comp.sys.raspberry-pi, Joe <joe@jretrading.com> wrote:
    Andy Burns <usenet@andyburns.uk> wrote:
    Joe wrote:
    randon <randon@nimbulus.xyz> wrote:
    For modern purposes you really shouldn't be using telnet.

    Not to telnetd servers probably, but it has other uses. And the post
    you replied to did mention not needing a telnet daemon.

    Not for actual communication, no. But as a quick and dirty means
    of checking for a running server, and usually seeing the server's
    banner, it's difficult to beat. I've also been known to test SMTP
    servers that way.

    And nntp, and web, and redis, and dictd, and ...

    Though it's not unusual nowadays to find an SMTP server that gets
    upset at the slow speed a human can turn around the commands ...

    Can't say I've noticed that, but I don't do much raw SMTP. I've seen
    that with NNTP.

    Yes, possibly, though my server asks for an ident from connecting
    SMTP servers. Nobody runs an ident server nowadays, so a timeout of
    thirty seconds is imposed before the transaction continues.

    What do you do if the ident server replies?


    Get on with the transaction immediately. I don't think I've ever
    noticed this happening in the log file.

    --
    Joe

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Scott Alfter@21:1/5 to usenet@andyburns.uk on Wed Oct 20 17:39:12 2021
    In article <ita6veFapqeU1@mid.individual.net>,
    Andy Burns <usenet@andyburns.uk> wrote:
    ident is one of the few protocols I tend to configure firewalls to send an >active reject, rather than a silent drop, but that was a habit developed 15+ >years ago, no idea how many ident requests get sent nowadays.

    I've been fooling around with the Internet for over 30 years (including
    using telnet to send test emails and talk to IRC servers), but I've never
    even heard of this "ident" thing until it was brought up here. I've never
    had to configure any hosts, firewalls, or whatever with it in mind, and I've run my own mail server for over 20 years, so I suspect that if it ever
    really was a thing, by now it's pretty much a non-issue.

    (Someone else commented on my sig in another reply. The ASCII Apple has
    been in it since 1989, though for the first four years it had "IIe" in the middle instead of "IIGS," because that's what I was using. The IIGS is no longer my daily driver, but I still have it and it lives on here. :-) )

    _/_
    / v \ Scott Alfter (remove the obvious to send mail)
    (IIGS( https://alfter.us/ Top-posting!
    \_^_/ >What's the most annoying thing on Usenet?

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Joe@21:1/5 to Scott Alfter on Wed Oct 20 19:33:27 2021
    On Wed, 20 Oct 2021 17:39:12 GMT
    Scott Alfter <scott@alfter.diespammersdie.us> wrote:



    I've been fooling around with the Internet for over 30 years
    (including using telnet to send test emails and talk to IRC servers),
    but I've never even heard of this "ident" thing until it was brought
    up here. I've never had to configure any hosts, firewalls, or
    whatever with it in mind, and I've run my own mail server for over 20
    years, so I suspect that if it ever really was a thing, by now it's
    pretty much a non-issue.

    It's very old, one of the primeval protocols of the Net, like finger,
    from the days when most people who used the Net were academics and
    were moderately trustworthy.

    --
    Joe

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From The Natural Philosopher@21:1/5 to Scott Alfter on Wed Oct 20 19:27:56 2021
    On 20/10/2021 18:39, Scott Alfter wrote:
    In article <ita6veFapqeU1@mid.individual.net>,
    Andy Burns <usenet@andyburns.uk> wrote:
    ident is one of the few protocols I tend to configure firewalls to send an >> active reject, rather than a silent drop, but that was a habit developed 15+ >> years ago, no idea how many ident requests get sent nowadays.

    I've been fooling around with the Internet for over 30 years (including
    using telnet to send test emails and talk to IRC servers), but I've never even heard of this "ident" thing until it was brought up here. I've never had to configure any hosts, firewalls, or whatever with it in mind, and I've run my own mail server for over 20 years, so I suspect that if it ever
    really was a thing, by now it's pretty much a non-issue.

    (Someone else commented on my sig in another reply. The ASCII Apple has
    been in it since 1989, though for the first four years it had "IIe" in the middle instead of "IIGS," because that's what I was using. The IIGS is no longer my daily driver, but I still have it and it lives on here. :-) )

    The problem is it is not a sig
    vvvvvvvvvvvvvvvvvvvvvvvvvv

    _/_
    / v \ Scott Alfter (remove the obvious to send mail)
    (IIGS( https://alfter.us/ Top-posting!
    \_^_/ >What's the most annoying thing on Usenet?



    --
    “I know that most men, including those at ease with problems of the greatest complexity, can seldom accept even the simplest and most
    obvious truth if it be such as would oblige them to admit the falsity of conclusions which they have delighted in explaining to colleagues, which
    they have proudly taught to others, and which they have woven, thread by thread, into the fabric of their lives.”

    ― Leo Tolstoy

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Eli the Bearded@21:1/5 to joe@jretrading.com on Wed Oct 20 19:21:18 2021
    In comp.sys.raspberry-pi, Joe <joe@jretrading.com> wrote:
    Eli the Bearded <*@eli.users.panix.com> wrote:
    What do you do if the ident server replies?
    Get on with the transaction immediately. I don't think I've ever
    noticed this happening in the log file.

    So just that? No logging of the identity or adding it to mail headers
    somehow? I just used `telnet mail.jretrading.com smtp` to send you
    some mail from this host. I didn't notice any 30 second delays, but
    there was a ~1 second pause after the RCPT command. Is that when the
    ident kicks in?

    Elijah
    ------
    or it could have been normal internet lag

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Richard Falken@21:1/5 to All on Wed Oct 20 14:08:28 2021
    Re: Re: Telnet
    By: Scott Alfter to usenet@andyburns.uk on Wed Oct 20 2021 05:39 pm

    In article <ita6veFapqeU1@mid.individual.net>,
    Andy Burns <usenet@andyburns.uk> wrote:
    ident is one of the few protocols I tend to configure firewalls to send an >active reject, rath
    than a silent drop, but that was a habit developed 15+ >years ago, no idea how many ident reques
    get sent nowadays.

    I've been fooling around with the Internet for over 30 years (including using telnet to send test emails and talk to IRC servers), but I've never even heard of this "ident" thing until it was brought up here. I've never had to configure any hosts, firewalls, or whatever with it in mind, and I've run my own mail ser
    for over 20 years, so I suspect that if it ever
    really was a thing, by now it's pretty much a non-issue.

    (Someone else commented on my sig in another reply. The ASCII Apple has been in it since 1989, though for the first four years it had "IIe" in the middle instead of
    "IIGS," because that's what I was using. The IIGS is no longer my daily driver, but I still hav
    it and it lives on here. :-) )

    _/_
    / v \ Scott Alfter (remove the obvious to send mail)
    (IIGS( https://alfter.us/ Top-posting!
    \_^_/ >What's the most annoying thing on Usenet?

    Ident is still relevant for some IRC services. Some IRC servers in actual networks don't let you in
    if your Ident responsie is not convincing.

    This still makes sense because a bunch of users connect to IRC using remote shells.

    --
    gopher://gopher.richardfalken.com/1/richardfalken

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)
  • From Joe@21:1/5 to Eli the Bearded on Thu Oct 21 09:01:42 2021
    On Wed, 20 Oct 2021 19:21:18 -0000 (UTC)
    Eli the Bearded <*@eli.users.panix.com> wrote:

    In comp.sys.raspberry-pi, Joe <joe@jretrading.com> wrote:
    Eli the Bearded <*@eli.users.panix.com> wrote:
    What do you do if the ident server replies?
    Get on with the transaction immediately. I don't think I've ever
    noticed this happening in the log file.

    So just that? No logging of the identity or adding it to mail headers somehow?

    I don't think I've ever had even one reply. I do see 'timeout exceeded' messages throughout the log, and a lot of obvious spammer connections
    dropped for no other reason. Not all, unfortunately.

    I just used `telnet mail.jretrading.com smtp` to send you
    some mail from this host. I didn't notice any 30 second delays, but
    there was a ~1 second pause after the RCPT command. Is that when the
    ident kicks in?

    Probably. Most of the rejection code is in RCPT, on the theory that if
    told there is no such recipient, they won't bother ringing back. I
    don't know how well that works, but it is/was standard advice.

    I do know that I found it convenient to run ident on my main
    workstation, though I'm not worried about timeouts elsewhere. But I
    sometimes send a string of emails quite quickly from the workstation,
    and the thirty seconds were irritating.

    --
    Joe

    --- SoupGate-Win32 v1.05
    * Origin: fsxNet Usenet Gateway (21:1/5)