Hiding Connections

It is recommended to hide connections to any servers running on your machine to avoid disclosing unnecessary information.

The recommended way to accomplish this is to hide all connections and only respond to queries for certain user accounts:

default {
	default {
		force hide
	}
}

user "ryan" {
	default {
		force reply "ryan"
	}
}

It is also possible to hide individual users' connections:

user "root" {
	default {
		force hide
	}
}

user "http" {
	default {
		force hide
	}
}

Alternatively, the random and random_numeric capabilities may be used to conceal users' real login names while still allowing the system administrator to identify who was responsible for a particular connection. See the list of capabilities for more information.