Date: Mon, 13 May 2002 13:32:21 +0300 From: Ruslan Ermilov <ru@FreeBSD.ORG> To: Paul Everlund <tdv94ped@cs.umu.se> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: inetd - hosts.allow warnings Message-ID: <20020513103221.GJ64294@sunbay.com> In-Reply-To: <Pine.GSO.4.33.0205131008370.20597-100000@gren.cs.umu.se> References: <Pine.GSO.4.33.0205131008370.20597-100000@gren.cs.umu.se>
next in thread | previous in thread | raw e-mail | index | archive | help
--g3RkK9jYN81zD2N+ Content-Type: text/plain; charset=us-ascii Content-Disposition: inline Content-Transfer-Encoding: quoted-printable On Mon, May 13, 2002 at 10:16:32AM +0200, Paul Everlund wrote: > Hi all! >=20 > Did get this message in my log: > > May 12 21:07:12 fw inetd[30064]: warning: /etc/hosts.allow, > line 23: host name/name mismatch: hosting-90.120.rev.fr.colt.net > !=3D everlund.homeip.net >=20 > What do trigger this message? Looking only at the equivalence; > hosting-90.120.rev.fr.colt.net !=3D everlund.homeip.net, that > the "visiting" host is different than my domain, I would get > this message from every "visiting" computer, but I do not. >=20 > Do the message imply a security threat, or nothing bad has > really happened, or bad things can happen out of this? >=20 > Depending of what triggers it, can I change anything in > hosts.allow to stop those hosts that fire up these warnings? >=20 > Thanks in advance for all the help I can get on this matter! >=20 The contents of /etc/hosts causes this: : revision 1.14 : date: 2001/09/29 12:20:08; author: ru; state: Exp; lines: +3 -3 : Backout revision 1.9 that added `myname.my.domain' as another alias for : `localhost'. If your /etc/nsswitch.conf has ``hosts: files dns'', and : you changed `myname.my.domain' in /etc/hosts to match hostname(1), and : you run inetd(8) with the -l option, any connect to `myname' using its : real IP address through inetd(8), e.g. `ftp -a myname', will spam your : /var/log/messages with: :=20 : inetd[PID]: warning: /etc/hosts.allow, line 23: host name/name mismatch: = myname.my.domain !=3D localhost :=20 : This is especially bad for -STABLE, where /etc/host.conf defaults to : "files first then DNS" resolution order. :=20 : Noticed by: Igor Kucherenko <kivvy@sunbay.com> : MFC after: 1 week Cheers, --=20 Ruslan Ermilov Sysadmin and DBA, ru@sunbay.com Sunbay Software AG, ru@FreeBSD.org FreeBSD committer, +380.652.512.251 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age --g3RkK9jYN81zD2N+ Content-Type: application/pgp-signature Content-Disposition: inline -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (FreeBSD) iD8DBQE835Y1Ukv4P6juNwoRAqrkAJ0RHoZz218/+x537W9NLdzAekdRIgCfaKyh LZFV8XbEQmgowOXXf1it29A= =/XRu -----END PGP SIGNATURE----- --g3RkK9jYN81zD2N+-- To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020513103221.GJ64294>