Re: ssh problems with {master,va}.debian.org???

To: Jules Bean <jmlb2@hermes.cam.ac.uk>
Cc: debian-devel <debian-devel@lists.debian.org>
Subject: Re: ssh problems with {master,va}.debian.org???
From: Clint Adams <schizo@debian.org>
Date: Tue, 23 May 2000 15:21:58 -0400
Message-id: <[🔎] 20000523152158.A11475@scowler.net>
In-reply-to: <[🔎] 20000523171657.B510@pear.presence.net.uk>; from jmlb2@hermes.cam.ac.uk on Tue, May 23, 2000 at 05:16:58PM +0100
References: <[🔎] 20000517135244.D1121@glitch.snoozer.net> <[🔎] 200005171909.OAA31214@core.federated.com> <[🔎] 20000521173603.A11403@pimlott.ne.mediaone.net> <[🔎] 20000523113829.B10650@scowler.net> <[🔎] 20000523171657.B510@pear.presence.net.uk>

> I assume the point is that if you care about who's connecting, you
> should set the option which only allows known host keys to connect.
> If you don't, then you probably shouldn't care about reverse-lookups
> matching particularly...

The two "authentication" methods are mutually independent.  For example,
I may be able to steal a host key and fudge my PTR record, but if PARANOID
is on, I can't get in unless the forward matches.

Reply to:

References:
- ssh problems with {master,va}.debian.org???
  - From: "Gregory T. Norris" <adric@debian.org>
- Re: ssh problems with {master,va}.debian.org???
  - From: Jim Studt <jim@federated.com>
- Re: ssh problems with {master,va}.debian.org???
  - From: Andrew Pimlott <andrew@pimlott.ne.mediaone.net>
- Re: ssh problems with {master,va}.debian.org???
  - From: Clint Adams <schizo@debian.org>
- Re: ssh problems with {master,va}.debian.org???
  - From: Jules Bean <jmlb2@hermes.cam.ac.uk>

Prev by Date: Re: ITP seahorse
Next by Date: Re: ITP seahorse
Previous by thread: Re: ssh problems with {master,va}.debian.org???
Next by thread: Re: ssh problems with {master,va}.debian.org???
Index(es):
- Date
- Thread