Re: how to get rid of sshd needing DNS ?

From: Timo Felbinger (Timo.Felbinger_at_physik.uni-potsdam.de)
Date: 04/27/04 

Date: Tue, 27 Apr 2004 09:55:25 +0200

On Mon, 26 Apr 2004, Thomas Wolf wrote:

> Hi,
>
> This one is driving me crazy.
> I dont want my sshd to lookup the client's IP.
> Turned off VerifyReverseMapping, running sshd with -n0,
> not using all the items listed in the manpage that
> could cause a lookup but no luck. Any hints ?
> BTW, this is on FreeBSD 4.9-RELEASE-p4.
>

Is your sshd compiled --with-tcp-wrappers? If so, you may want to
try --without-tcp-wrappers.

Regards,

Timo Felbinger

Relevant Pages

  • Re: sshd. "UseDNS no" ignored?
    ... "UseDNS no" only prevents sshd from performing a validation ... of the client's reverse lookup. ... that it will not put hostnames into the utmp structure ...
    (freebsd-stable)
  • Re: ssh initial connects SLOW
    ... attempted *logging* of the hostname of the connecting site, ... information ot 0 does, in fact, block the lookup. ... documented in the sshd manpage. ... would have been easy to modify the code to check for the UseDNS ...
    (comp.security.ssh)
  • Re: how to get rid of sshd needing DNS ?
    ... >> I dont want my sshd to lookup the client's IP. ... Any hints? ...
    (comp.security.ssh)
  • Re: how to get rid of sshd needing DNS ?
    ... >I dont want my sshd to lookup the client's IP. ... >Turned off VerifyReverseMapping, running sshd with -n0, ... Good judgement comes with experience. ...
    (comp.security.ssh)
  • Re: OpenSSH and hostname resolution issues on Solaris
    ... Abell) writes: ... >I believe the OP said that sshd was compiled with TCP wrappers. ... >lookup on the name acquired during the reverse lookup of the IP ...
    (comp.security.ssh)