> > > From: Jon Peatfield <J.S.Peatfield@amtp.cam.ac.uk> > [...] > > I'd like to add a new authentication mechanism to X which uses Ident (TAP, > > RFC-931 etc), to check that a user is permitted. e.g. a server is given a > > list of allowed user/machine pairs by a program like xhost: > > [which it checks using ident for incoming connections...] > > This pretty much reduces down to the same problem that xhost has. I have > several program that will fake my ident ID to be whatever I want it to be. Why bother? I hear there is this real hot cracker program called "su". Proff