Bug 8463 - firewall breaks wu-ftp due to ident
firewall breaks wu-ftp due to ident
Product: Red Hat Linux
Classification: Retired
Component: wu-ftpd (Show other bugs)
All Linux
medium Severity medium
: ---
: ---
Assigned To: Bernhard Rosenkraenzer
Depends On:
  Show dependency treegraph
Reported: 2000-01-13 23:04 EST by kpinc
Modified: 2008-05-01 11:37 EDT (History)
0 users

See Also:
Fixed In Version:
Doc Type: Bug Fix
Doc Text:
Story Points: ---
Clone Of:
Last Closed: 2000-02-03 16:04:01 EST
Type: ---
Regression: ---
Mount Type: ---
Documentation: ---
Verified Versions:
Category: ---
oVirt Team: ---
RHEL 7.3 requirements from Atomic Host:
Cloudforms Team: ---

Attachments (Terms of Use)

  None (edit)
Description kpinc 2000-01-13 23:04:59 EST
Ident seems to be compiled into wu-ftpd.  We're running a server outside of
our firewall, and couldn't get into it from inside the firewall.  Turns out
the firewall is eating the ident packets and not sending a "icmp
unreachable" response back to the server.  This causes the server to hang
there and never (seemingly) deliver a login prompt.

Adding -I0 to the in.ftpd command line in /etc/inetd.conf fixes this.

I don't know if our firewall configuration is "normal" or not, but we
probably can't get to any 6.1 redhat ftp servers out there on the net
either.  Others may or may not have the same problem.

(FYI: We've had ident problems with sendmail before too...)

P.S.  It's annoying not to be able to search the mailing lists any longer.
Comment 1 kpinc 2000-01-13 23:43:59 EST
I take it back.  This problem is happening on a RedHat 6.0 system, not 6.1.
Comment 2 Elliot Lee 2000-02-03 16:04:59 EST
A final policy decision is up to the system administrator - the RH default works
for most people, and the mechanism for selecting policy does work.

Note You need to log in before you can comment on or make changes to this bug.