In regard to: DNS/host file looksups with ssh and tcp wrappers, David...:
>I am running ssh on Solaris 7 inconjuction with tcp wrappers. We cannot use
>ssh to login to a server running sshd2 unless the host connecting to the
>server is either a resolvable through DNS or there is an entry in the
>/etc/hosts file, regardless of the fact the hosts are specifically mentioned
>in the hosts.allow file. Is this a security feature that can be turned off?
>We do not want ssh to attempt DNS resolutions.
Investigate how tcp_wrappers was compiled. I believe one of the options
(PARANOID, maybe) is the one that's causing this.
Tim
--
Tim Mooney [EMAIL PROTECTED]
Information Technology Services (701) 231-1076 (Voice)
Room 242-J1, IACC Building (701) 231-8541 (Fax)
North Dakota State University, Fargo, ND 58105-5164
