[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]

Re: Delay when logginng in to FC5 via ssh



-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1

Don Russell wrote:
> What is doing the "reverse lookup"? And can I just turn that off? It
> doesn't seem to make much sense to me that I add complexity in the
> form of a dns server that does little more than convert the ip
> address brom binary form to printable characters. I'd rather just
> skip the reverse lookup altogether.
> 
> Am I missing some fundamental philosophy here? What's the point of
> reverse look ups in such cases?

Sshd does this so it can apply the tcp-wrappers rules from
/etc/hosts.allow and /etc/hosts.deny.

Set "UseDNS no" option in /etc/ssh/sshd_config to disable this.

- -- 
Todd        OpenPGP -> KeyID: 0xD654075A | URL: www.pobox.com/~tmz/pgp
======================================================================
It seems such a pity that Noah and his party did not miss the boat.
    -- Mark Twain

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)
Comment: When crypto is outlawed bayl bhgynjf jvyy unir cevinpl.

iG0EARECAC0FAkRpJvwmGGh0dHA6Ly93d3cucG9ib3guY29tL350bXovcGdwL3Rt
ei5hc2MACgkQuv+09NZUB1omigCgpUa8PDFxwCrgWvAtwbO1LihinroAoO4cm7KM
eoIWCu6g9sMyIXZCl7Oy
=0499
-----END PGP SIGNATURE-----


[Date Prev][Date Next]   [Thread Prev][Thread Next]   [Thread Index] [Date Index] [Author Index]