Host name lookup failure using hostbased authentication
Thomas Köller
thomas at koeller.dyndns.org
Mon Oct 23 22:27:14 AEDT 2023
Am 23.10.23 um 02:57 schrieb Darren Tucker:
> Suggestions:
> - "host" does DNS lookups, but is your system's nsswitch.conf or
> equivalent actually configured to use DNS?
Yes, it is:
hosts: myhostname resolve [!UNAVAIL=return] files dns
I tried to verify correct nss operation using getent. This is what I got:
[thomas at sarkovy ~]$ getent ahostsv4 htpc.koeller.dyndns.org
192.168.0.2 STREAM htpc.koeller.dyndns.org
192.168.0.2 DGRAM
192.168.0.2 RAW
[thomas at sarkovy ~]$ getent hosts 192.168.0.2
192.168.0.2 htpc.koeller.dyndns.org
> - have you turned off DNS lookups in sshd with "UseDNS no" in sshd_config?
No
> - you could try setting "HostbasedUsesNameFromPacketOnly yes" in sshd_config.
I know, but I do not want to do that.
More information about the openssh-unix-dev
mailing list