Skip site navigation (1)Skip section navigation (2) 
Date:      Fri, 5 Sep 2003 19:11:27 +0200
From:      "Simon L. Nielsen" <simon@FreeBSD.org>
To:        Dwayne MacKinnon <Dwayne.MacKinnon@xwave.com>
Cc:        Kris Kennaway <kris@obsecurity.org>
Subject:   Re: PUzzling sshd behaviour
Message-ID:  <20030905171125.GA1356@FreeBSD.org>
In-Reply-To: <3F58B9D6.7040102@xwave.com>
References:  <3F589E94.1080508@xwave.com> <20030905154646.GA59881@rot13.obsecurity.org> <3F58B3F4.3020502@xwave.com> <20030905161030.GC22913@pun.isi.edu> <3F58B9D6.7040102@xwave.com>
index | next in thread | previous in thread | raw e-mail 

[-- Attachment #1 --]
On 2003.09.05 12:29:10 -0400, Dwayne MacKinnon wrote:
> Ted Faber wrote:
> >On Fri, Sep 05, 2003 at 12:04:04PM -0400, Dwayne MacKinnon wrote:
> >
> >>That much I know. I was just wondering why the daemon is trying DNS 
> >>lookup when the IP in question is listed in /etc/hosts. I thought 
> >>listings in /etc/hosts would supercede the need for a DNS lookup. Of 
> >>course, I could be wrong... it wouldn't be the first time. :-)
> >
> >
> >If you haven't you need to check out /etc/host.conf , the file that
> >configures the hostname lookup order (at least on 4.8).  
> >man 5 host.conf will tell you all about it.  If you have already
> >configured this, you might want to look again.  (man -k resolver should
> >help you find whatever it is on 5.x - I suspect it's nsswitch.)
> 
> My host.conf is a FreeBSD 4.8 default one: it lists hosts, then bind. 
> That's why I don't understand why it's doing DNS... there's a listing in 
> hosts, and according to host.conf the hosts listing should be found first.

Do you use Privilege Separation?  That can give interesting results with
DNS due to chroot into /var/empty...  see the mailing lists archives.

-- 
Simon L. Nielsen
FreeBSD Documentation Team

[-- Attachment #2 --]
-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.2.3 (FreeBSD)

iD8DBQE/WMO9h9pcDSc1mlERApELAJ9//3JOgPpC7n5qNVx/srvJOIthxgCgsrQ9
W7M3K8IW5k0ZiJvctzbsONA=
=SdEC
-----END PGP SIGNATURE-----
help

Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?20030905171125.GA1356>