Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 14 Jul 2000 14:26:20 -0400 (EDT)
From:      Robert Watson <rwatson@FreeBSD.org>
To:        Hajimu UMEMOTO <ume@FreeBSD.org>
Cc:        cvs-committers@FreeBSD.org, cvs-all@FreeBSD.org
Subject:   Re: cvs commit: src/lib/libutil realhostname.c
Message-ID:  <Pine.NEB.3.96L.1000714142251.86137D-100000@fledge.watson.org>
In-Reply-To: <200007141808.LAA07166@freefall.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help 
On Fri, 14 Jul 2000, Hajimu UMEMOTO wrote:

>   Sshd writes connected host into utmp directly.  If the connection is
>   via IPv6, the hostname is trimed due to the length of IPv6 address.
>   This change saves it as possible.
>   I have a grudge against the shortage of UT_HOSTSIZE.

I believe BSD/OS switched to a model where they retain both a hostname and
an address.  I don't know if their address field can hold an IPv6 address.

Rant:

Nothing irritates me more than seeing "Invalid address" in wtmp, when DNS
fails and login stamps that in.  How utterly useless.  In my mind, if we
store one thing, it should be the IP address (v4 or v6 or whatever), and
if two, then also the hostname at the time that the connection occurred.
Furthermore, it would be nice if an authenticity parameter was present for
both fields: (1) protection assuring that the IP was accurate (based on
IPsec somehow), and (2) protection assuring the name for the IP was
accurate (based on DNSsec).  I don't see either happening soon, but we can
and should fix the incorrect/inappropriate use of wtmp and utmp.

sshd currently puts IP addresses in the logs; we should change other
programs to do the same.  And we should fix UT_HOSTSIZE. :-)

  Robert N M Watson 

robert@fledge.watson.org              http://www.watson.org/~robert/
PGP key fingerprint: AF B5 5F FF A6 4A 79 37  ED 5F 55 E9 58 04 6A B1
TIS Labs at Network Associates, Safeport Network Services



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe cvs-all" in the body of the message

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.NEB.3.96L.1000714142251.86137D-100000>