Previous: ident variables, Up: ident Analyzer



7.18.2 ident event handlers

The standard script handles the following events:

ident_request (c: connection, lport: port, rport: port)
Invoked when a client request arrives on connection c, querying about the connection from local port lport to remote port rport, where local and remote are relative to the client.
ident_reply (c: connection, lport: port, rport: port, user_id: string, system: string)
Invoked when a server replies to an Ident request. lport and rport are again the local and remote ports (relative to the client) of the connection being asked about. user_id is the user information returned in the Ident server's reply, and system is information regarding the operating system (the Ident specification does not further standardize this information).

The handler annotates the queried connection with the user information, which it also checks against hot_ident_ids and hot_ident_exceptions as discussed above. At present, it does nothing with the system information.

ident_error (c: connection, lport: port, rport: port, line: string)
Invoked when the given request yielded an error reply from the Ident server. The handler annotates the connection with ident/<error>, where error is the text given in line.