Date: Mon, 13 May 2002 13:32:21 +0300 From: Ruslan Ermilov <ru@FreeBSD.ORG> To: Paul Everlund <tdv94ped@cs.umu.se> Cc: freebsd-questions@FreeBSD.ORG Subject: Re: inetd - hosts.allow warnings Message-ID: <20020513103221.GJ64294@sunbay.com> In-Reply-To: <Pine.GSO.4.33.0205131008370.20597-100000@gren.cs.umu.se> References: <Pine.GSO.4.33.0205131008370.20597-100000@gren.cs.umu.se>
index | next in thread | previous in thread | raw e-mail
[-- Attachment #1 --] On Mon, May 13, 2002 at 10:16:32AM +0200, Paul Everlund wrote: > Hi all! > > Did get this message in my log: > > May 12 21:07:12 fw inetd[30064]: warning: /etc/hosts.allow, > line 23: host name/name mismatch: hosting-90.120.rev.fr.colt.net > != everlund.homeip.net > > What do trigger this message? Looking only at the equivalence; > hosting-90.120.rev.fr.colt.net != everlund.homeip.net, that > the "visiting" host is different than my domain, I would get > this message from every "visiting" computer, but I do not. > > Do the message imply a security threat, or nothing bad has > really happened, or bad things can happen out of this? > > Depending of what triggers it, can I change anything in > hosts.allow to stop those hosts that fire up these warnings? > > Thanks in advance for all the help I can get on this matter! > The contents of /etc/hosts causes this: : revision 1.14 : date: 2001/09/29 12:20:08; author: ru; state: Exp; lines: +3 -3 : Backout revision 1.9 that added `myname.my.domain' as another alias for : `localhost'. If your /etc/nsswitch.conf has ``hosts: files dns'', and : you changed `myname.my.domain' in /etc/hosts to match hostname(1), and : you run inetd(8) with the -l option, any connect to `myname' using its : real IP address through inetd(8), e.g. `ftp -a myname', will spam your : /var/log/messages with: : : inetd[PID]: warning: /etc/hosts.allow, line 23: host name/name mismatch: myname.my.domain != localhost : : This is especially bad for -STABLE, where /etc/host.conf defaults to : "files first then DNS" resolution order. : : Noticed by: Igor Kucherenko <kivvy@sunbay.com> : MFC after: 1 week Cheers, -- Ruslan Ermilov Sysadmin and DBA, ru@sunbay.com Sunbay Software AG, ru@FreeBSD.org FreeBSD committer, +380.652.512.251 Simferopol, Ukraine http://www.FreeBSD.org The Power To Serve http://www.oracle.com Enabling The Information Age [-- Attachment #2 --] -----BEGIN PGP SIGNATURE----- Version: GnuPG v1.0.7 (FreeBSD) iD8DBQE835Y1Ukv4P6juNwoRAqrkAJ0RHoZz218/+x537W9NLdzAekdRIgCfaKyh LZFV8XbEQmgowOXXf1it29A= =/XRu -----END PGP SIGNATURE-----help
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20020513103221.GJ64294>