Re: ALL: PARANOID from /etc/hosts.deny Should be Commented by default

To: debian-devel@lists.debian.org
Subject: Re: ALL: PARANOID from /etc/hosts.deny Should be Commented by default
From: andrew@pimlott.ne.mediaone.net (Andrew Pimlott)
Date: Wed, 18 Apr 2001 16:41:40 -0400
Message-id: <[🔎] 20010418164140.D13362@pimlott.ne.mediaone.net>
Mail-followup-to: debian-devel@lists.debian.org
In-reply-to: <[🔎] Pine.LNX.4.10.10104181502490.23012-100000@shamu.netexpress.net>; from vorlon@netexpress.net on Wed, Apr 18, 2001 at 03:13:38PM -0500
References: <[🔎] 20010418152310.A13362@pimlott.ne.mediaone.net> <[🔎] Pine.LNX.4.10.10104181502490.23012-100000@shamu.netexpress.net>

On Wed, Apr 18, 2001 at 03:13:38PM -0500, Stephen Langasek wrote:
> If you have /any/ software 
> on your machine which logs hostnames instead of IPs, and your software
> doesn't check to make sure the forward and reverse match, it's relatively
> easy for an attacker to throw you off his trail.

PS to my last message.  If we can verify that openssh sshd isn't
fooled by this trick (ie, it does its own cross-checks, or only logs
IP addresses, or gets the hostname from libwrap), would anyone
accept turning off PARANOID for ssh only?

Andrew

Reply to:

References:
- Re: ALL: PARANOID from /etc/hosts.deny Should be Commented by default
  - From: andrew@pimlott.ne.mediaone.net (Andrew Pimlott)
- Re: ALL: PARANOID from /etc/hosts.deny Should be Commented by default
  - From: Stephen Langasek <vorlon@netexpress.net>

Prev by Date: Re: ALL: PARANOID from /etc/hosts.deny Should be Commented by default
Next by Date: Re: ALL: PARANOID from /etc/hosts.deny Should be Commented by default
Previous by thread: Re: ALL: PARANOID from /etc/hosts.deny Should be Commented by default
Next by thread: Re: ALL: PARANOID from /etc/hosts.deny Should be Commented by default
Index(es):
- Date
- Thread