Topic: Portscan and port 113

[dilligaf]

I have never worried about port 113 in the grc scans, as well as others like it.
Have many servers out, never had a problem because of port 113 that I am aware of.
A self proclaimed UNIX god, did a port scan on the server and was trying to make it look real bad in front of the owner that this port was open.
I am interested in what others are doing about port 113 or even a link to a FAQ that describes why you should not have it opne.
Thanks in advance.

[CharlieBrady]

I have never worried about port 113 in the grc scans, as well as others like it.
Have many servers out, never had a problem because of port 113 that I am aware of.
A self proclaimed UNIX god, did a port scan on the server and was trying to make it look real bad in front of the owner that this port was open.
I am interested in what others are doing about port 113 or even a link to a FAQ that describes why you should not have it opne.

Did you ask the "UNIX god" exactly what he thought the problem was with port 113 being "open"?

FTR, oidentd has an excellent security record:

http://dev.ojnk.net/stuff/oidentd.changelog

There's a reasonable summary of port 113 (identid) issues here:

http://www.faqs.org/faqs/computer-security/most-common-qs/

but it fails to mention that if you stealth port 113, you will interfere with some outbound connections, making them very slow and/or unreliable.