Useless log message "POSSIBLE BREAK-IN ATTEMPT"
Alex Bligh
alex at alex.org.uk
Mon Dec 30 22:43:09 EST 2013
On 29 Dec 2013, at 16:48, Nicolai wrote:
>>
>> There is no reason for ssh to "use DNS" except in the client to resolve
>> server addresses.
>
> SSH tunnels (with proxied DNS to avoid leaks) need UseDNS on the server.
Why? UseDNS looks up the peer's DNS records. If anything, I think you
would want that switched off (precisely to avoid the server looking
up the in-addr.arpa of the peer).
--
Alex Bligh
More information about the openssh-unix-dev
mailing list