Hiding Connections

It is recommended to hide connections to any servers running on your machine so as not to disclose any unnecessary information.

The recommended way to accomplish this is by hiding all connections and only responding to queries for certain user accounts:

default {
	default {
		force hide
	}
}

user "ryan" {
	default {
		force reply "ryan"
	}
}

It is also possible to hide individual users’ connections:

user "root" {
	default {
		force hide
	}
}

user "http" {
	default {
		force hide
	}
}

Alternatively, the random and random_numeric capabilities can be used to conceal users’ real login names while still allowing the system administrator to identify who was responsible for a particular connection. See Capabilities for more information.