-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA1
Don Russell wrote:
> What is doing the "reverse lookup"? And can I just turn that off? It
> doesn't seem to make much sense to me that I add complexity in the
> form of a dns server that does little more than convert the ip
> address brom binary form to printable characters. I'd rather just
> skip the reverse lookup altogether.
>
> Am I missing some fundamental philosophy here? What's the point of
> reverse look ups in such cases?
Sshd does this so it can apply the tcp-wrappers rules from
/etc/hosts.allow and /etc/hosts.deny.
Set "UseDNS no" option in /etc/ssh/sshd_config to disable this.
- --
Todd OpenPGP -> KeyID: 0xD654075A | URL: www.pobox.com/~tmz/pgp
======================================================================
It seems such a pity that Noah and his party did not miss the boat.
-- Mark Twain
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.3 (GNU/Linux)
Comment: When crypto is outlawed bayl bhgynjf jvyy unir cevinpl.
iG0EARECAC0FAkRpJvwmGGh0dHA6Ly93d3cucG9ib3guY29tL350bXovcGdwL3Rt
ei5hc2MACgkQuv+09NZUB1omigCgpUa8PDFxwCrgWvAtwbO1LihinroAoO4cm7KM
eoIWCu6g9sMyIXZCl7Oy
=0499
-----END PGP SIGNATURE-----
