The identd daemon in Red Hat 6.1 runs as the root user, not 'nobody', which is unnecessary and for all I know may lead to a security compromise. There are actually 2 separate bugs: 1. in /etc/inetd.conf, identd is run as 'root' instead of 'nobody' (this should be marked as a bug in netkit-base, I know) 2. (more importantly) the identd code is multithreaded but is not aware of the fact that threads do not share UIDs in Linux. This causes some of the identd threads to run as root when identd is started from init. identd also fails to drop supplimental group IDs, which results in it having group ID 0 anyway. A fix against pidentd-3.0.10, the version in the current Raw Hide, is located at: http://www.engin.umich.edu/caen/systems/Linux/code/patches/pidentd-3.0.10-security.patch Thanks, Chris Wing wingc.edu
*** Bug 9539 has been marked as a duplicate of this bug. ****** Bug 9540 has been marked as a duplicate of this bug. ***Will be fixed in pidentd-3.0.10-4.