[Bug 2405] New: Description of UseDNS option is not accurate

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Thu May 28 17:56:17 AEST 2015


https://bugzilla.mindrot.org/show_bug.cgi?id=2405

            Bug ID: 2405
           Summary: Description of UseDNS option is not accurate
           Product: Portable OpenSSH
           Version: 6.8p1
          Hardware: Other
                OS: Linux
            Status: NEW
          Severity: enhancement
          Priority: P5
         Component: Documentation
          Assignee: unassigned-bugs at mindrot.org
          Reporter: jjelen at redhat.com

After releasing openssh-6.8 with new default "UseDNS no", some of our
users were surprised that they can't connect to their machines with
authorized keys limited to hostname, example:
'from="host.example.org" ssh-rsa ...' in ~/.ssh/authorized_keys

Manual page should state that this option turns off not only reverse
lookups (from manual page -- "look up the remote host name and check
that the resolved host name for the remote IP address maps back to the
very same IP address"), but all DNS functionality that is required for
some functions to work, for example above mentioned authorized_keys
based on hostname.

Based on Red Hat bugziila [1].

[1] https://bugzilla.redhat.com/show_bug.cgi?id=1225239

-- 
You are receiving this mail because:
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list