Re: Two simple openssh questions...

From: Nico Kadel-Garcia (nkadel_at_verizon.net)
Date: 08/27/03

• Next message: Christian: "Re: SSH, Putty and Mandrake 9.1"
• Previous message: Bill Unruh: "Re: SSH, Putty and Mandrake 9.1"
• In reply to: Thomas Binder: "Re: Two simple openssh questions..."
• Next in thread: Thomas Binder: "Re: Two simple openssh questions..."
• Reply: Thomas Binder: "Re: Two simple openssh questions..."
• Reply: Richard E. Silverman: "Re: Two simple openssh questions..."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Wed, 27 Aug 2003 03:58:23 GMT

Thomas Binder wrote:

> Hi!
>
> Nico Kadel-Garcia <nkadel@verizon.net> wrote:
>
>>Lack of reverse DNS is not "broken".
>
>
> And where did I state that? I said that if there are delays when
> sshd is trying to reverse lookup the IP, then usually the local
> DNS config is broken. Whether an IP resolves to a hostname or not
> should not have any (noticable) effect on the time the query takes
> when DNS is set up properly.

The DNS is set up "properly". It is not set up *completely* for reverse
DNS, which is not unusual for small sites with /etc/hosts and no local
DNS server in place, and is perfectly acceptable. Providing DNS in such
situations, especially in DHCP based client configurations, is difficult
if not painiful to set up correctly. You basically have to get the DHCP
data, rewrite your named.conf on the fly, generate reverse DNS tables on
the fly, and pray that your DHCP doesn't change for long before your
scans of DHCP updates catch it and rebuild your reverse DNS tables.

Awkward, painful, and unwise.

• Next message: Christian: "Re: SSH, Putty and Mandrake 9.1"
• Previous message: Bill Unruh: "Re: SSH, Putty and Mandrake 9.1"
• In reply to: Thomas Binder: "Re: Two simple openssh questions..."
• Next in thread: Thomas Binder: "Re: Two simple openssh questions..."
• Reply: Thomas Binder: "Re: Two simple openssh questions..."
• Reply: Richard E. Silverman: "Re: Two simple openssh questions..."
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Usage Report show IP addr instead of computer names ... The reverse DNS look-up is only query DNS server, ... | the reverse lookups at 4:30, will that cause the Usage Report to identify ... (microsoft.public.windows.server.sbs) RE: query regarding reverse IP ... Generally reverse DNS is governed by your ISP. ... and looking up the PTR record. ... Now when I am searching the other way it is YOUR DNS server that answers ... (RedHat) Re: Question about using .LOCAL and .COM ... > solutions) manage the DNS and will use that service. ... Herb Martin ... SBC will have the REVERSE and you need to find out ... >> email server will try to confirm you are who you say you are ... (microsoft.public.win2000.dns) Re: Reverse DNS with Multiple Virtual Hosts ... Thanks for the response and detailed information, ... > public DNS, and it would be pointless besides simply because applications ... > reverse name for the sender's IP. ... > But if the receiving mail server is insisting that the reverse lookup map ... (microsoft.public.windows.server.dns) Re: Reverse DNS Help ... > previously) and have everything working except Reverse DNS. ... The delegation info you post only works if you already have authority. ... ISP's will delegate the reverse lookup to the Forward zone for your domain ... (microsoft.public.windows.server.dns)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint