Unwanted reverse mapping of ip addresses
Aaron Bostick
abostick at mydoconline.com
Fri Feb 28 07:58:51 EST 2003
Thomas,
Thanks for the pointer! That -u0 was hidden in the man page but it
works great! To think I recompiled and built my own package when all I
had to do was change the startup script...hehe
Aaron
On Thu, 2003-02-27 at 12:12, Thomas Binder wrote:
> Hi!
>
> On Thu, Feb 27, 2003 at 11:57:35AM -0600, Aaron Bostick wrote:
> > I am using Solaris 8 with ssh 3.4p1, and this piece of code:
> >
> > debug3("Trying to reverse map address %.100s.", ntop);
> > /* Map the IP address to a host name. */
> > if (getnameinfo((struct sockaddr *)&from, fromlen, name,
> > sizeof(name),
> > NULL, 0, NI_NAMEREQD) != 0) {
> > /* Host name not found. Use ip address. */
> > log("Could not reverse map address %.100s.", ntop);
> > return xstrdup(ntop);
> >
> > takes like 30 to 60 seconds to run if you have dns listed in your
> > nsswitch.conf, which in many cases is needed.
>
> It only takes that long if you've configured nameservers in
> /etc/resolv.conf that do not respond to queries. First check that
> everything's set up properly.
>
> If you still insist on sshd not making nameserver lookups, take a
> look at sshd's manpage, option '-u' in particular.
>
>
> Ciao
>
> Thomas
--
Aaron Bostick
Sr Network Architect
CISSP #21728, CCIE #7988
Mydoconline.com
-------------- next part --------------
A non-text attachment was scrubbed...
Name: not available
Type: application/pgp-signature
Size: 189 bytes
Desc: This is a digitally signed message part
Url : http://lists.mindrot.org/pipermail/openssh-unix-dev/attachments/20030227/5339b4ae/attachment.bin
More information about the openssh-unix-dev
mailing list