From: Ehud Gavron (no email)
Date: Tue May 19 1998 - 18:36:43 EDT
Suggestion: PPP access devices intercept identD requests
and return the authenticated access string.
Reasoning: Modern ``stacks'' used by end-users -- especially
those on throwaway accounts, fake any identD response.
This makes tracking those people tougher.
Methods: 1: identD v2, new port, intercepted by access devices
which support it.
2: modification to hosts requirement RFCs, making
access devices responsible for intercepting identD
requests to their PPP clients.
3: a security RFC ``suggesting'' 1 or 2
Thoughts appreciated, as are comments, flames, blames, and anything
of some content.
p.s. new beta traceroute at ftp.aces.com cd pub/software/traceroute/beta