Topic: How can I disable 'ident callbakcs'?

[cactus]

Since a few days my provider has implemented a full anti-spam block on outgoing mail from my SME Server, which means I can not send outgoing mail directly but I will have to use their smart-relay servers, which I would rather not do, since they sometimes have problems with their mailservers and they occur more regularly the last few months.

With the block in place and the use of the relay I can not send e-mail when they are down. In the help documentation on their site they state that it is also possible to still deliver mail with your own server directly to other mailservers by setting the timeout of the so-called 'ident callbacks' to 0 (zero) seconds. Does anybody here know how to do this? This way I can still deliver my own e-mail while I start searching for a new provider which does not roll-out these kind of rules (at least not without informing their customer).

[gordonr]

In the help documentation on their site they state that it is also possible to still deliver mail with your own server directly to other mailservers by setting the timeout of the so-called 'ident callbacks' to 0 (zero) seconds.

ident is useless unless you control both ends. We respond with generated junk to ident requests if oidentd is enabled. This causes pain for gamers, but they are not our target market - use a custom template if you really want to share your LAN identity with the world.

oidentd is now disabled by default, but was enabled by default in previous release. In the disabled state we explicitly reject incoming ident requests:

Code: [Select]


         /sbin/iptables -A $NEW_InboundTCP --proto tcp --dport 113 \
         --destination $OUTERNET \
        --jump REJECT \
        --reject-with tcp-reset


Other disabled protocols are silently dropped, but we REJECT ident to help speed up connections. Check whether oidentd is enabled, and if so, disable it:

Code: [Select]

config setprop oidentd status disabled
signal-event remoteacess-update