From owner-freebsd-ports  Mon Jun  1 05:30:28 1998
Return-Path: <owner-freebsd-ports@FreeBSD.ORG>
Received: (from majordom@localhost)
          by hub.freebsd.org (8.8.8/8.8.8) id FAA26580
          for freebsd-ports-outgoing; Mon, 1 Jun 1998 05:30:28 -0700 (PDT)
          (envelope-from owner-freebsd-ports@FreeBSD.ORG)
Received: from freefall.freebsd.org (freefall.FreeBSD.ORG [204.216.27.21])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id FAA26566
          for <freebsd-ports@FreeBSD.org>; Mon, 1 Jun 1998 05:30:25 -0700 (PDT)
          (envelope-from gnats@FreeBSD.org)
Received: (from gnats@localhost)
	by freefall.freebsd.org (8.8.8/8.8.5) id FAA13312;
	Mon, 1 Jun 1998 05:30:01 -0700 (PDT)
Received: from phoenix.welearn.com.au (suebla.lnk.telstra.net [139.130.44.81])
          by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id FAA25852
          for <FreeBSD-gnats-submit@freebsd.org>; Mon, 1 Jun 1998 05:23:36 -0700 (PDT)
          (envelope-from sue@phoenix.welearn.com.au)
Received: (from sue@localhost)
	by phoenix.welearn.com.au (8.8.5/8.8.5) id WAA13600;
	Mon, 1 Jun 1998 22:23:31 +1000 (EST)
Message-Id: <199806011223.WAA13600@phoenix.welearn.com.au>
Date: Mon, 1 Jun 1998 22:23:31 +1000 (EST)
From: Sue Blake <sue@welearn.com.au>
Reply-To: sue@welearn.com.au
To: FreeBSD-gnats-submit@FreeBSD.ORG
X-Send-Pr-Version: 3.2
Subject: ports/6815: ssh lookup ignores second IP address
Sender: owner-freebsd-ports@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.org


>Number:         6815
>Category:       ports
>Synopsis:       ssh lookup ignores second IP address
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    freebsd-ports
>State:          open
>Quarter:
>Keywords:
>Date-Required:
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Mon Jun  1 05:30:01 PDT 1998
>Last-Modified:
>Originator:     Sue Blake
>Organization:
>Release:        FreeBSD 2.2.2-RELEASE i386
>Environment:

ssh-1.2.22 port as secure shell server

>Description:

When an ssh connection is made, sshd does a reverse lookup followed by a
forward lookup to check that the same IP address is returned. But if two
IP addresses are returned for the machine, sshd only takes one (the
first?) into account, and misleadingly reports:
 
Address x.x.x.x maps to foo.bar.com, but this does not map back to the
address - POSSIBLE BREAKIN ATTEMPT!


>How-To-Repeat:

Use ssh from a client machine with multiple IP addresses to connect
to sshd 1.2.22


>Fix:
	
	

>Audit-Trail:
>Unformatted:

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-ports" in the body of the message