Re: AllowUsers not working under certain conditions
This is a discussion on Re: AllowUsers not working under certain conditions within the OpenSSH Development forums, part of the Networking and Network Related category; On Thu, Nov 17, 2005 at 12:50:53PM -0000, Donald Fraser wrote: > The user donald can connect from ...
|
|||||||
| FAQ | Members List | Calendar | Search | Today's Posts | Mark Forums Read |
11-18-2005
|
|||
|
|||
Re: AllowUsers not working under certain conditions
On Thu, Nov 17, 2005 at 12:50:53PM -0000, Donald Fraser wrote:
> The user donald can connect from the local sub-net specified IP > address but cannot connect from an external domain that matches the > pattern *mydomain.com. The only way I can get the user donald to > connect on the external domain is by putting the exact IP address > in the AllowUsers option, which is not particularly useful as it is > a dynamically changing IP address. Does the PTR record for the IP address change along with the A record for the name? I assume sshd does a reverse-lookup of the IP-adress, otherwise it would be completely trivial to bypass the check. //Peter _______________________________________________ openssh-unix-dev mailing list openssh-unix-dev@mindrot.org http://www.mindrot.org/mailman/listi...enssh-unix-dev 
|
Linear Mode
