[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: ALL: PARANOID from /etc/hosts.deny Should be Commented by default

On Sat, Apr 21, 2001 at 10:43:27AM +1000, Daniel Stone wrote:
> On Fri, Apr 20, 2001 at 09:45:23PM +1000, Hamish Moffatt wrote:
> > On Fri, Apr 20, 2001 at 07:29:26PM +1000, Daniel Stone wrote:
> > > Aye, but I believe it was Hamish who suggested that PTRs should be made
> > > mandatory.
> > 
> > That's right. There is no good reason for them not to exist.
> Here's where theory and practice come into play. I only have a small chunk
> of 203.36.158.* (113-127, afaik), so how can you DNS-delegate that? At
> least, if there is a way, Telstra haven't figured it out yet.

it is completely irrelevant to this tcp-wrappers ALL:PARANOID discussion
whether the .in-addr.arpa records are delegated to you or not, or
whether they contain your preferred PTR records. that may be of cosmetic
significance to you, but it makes no difference whatsoever to how tcpd's
PARANOID option works.

the *ONLY* thing that matters is that the PTR record (if one exists)
matches the corresponding A record.


craig sanders <cas@taz.net.au>

      GnuPG Key: 1024D/CD5626F0 
Key fingerprint: 9674 7EE2 4AC6 F5EF 3C57  52C3 EC32 6810 CD56 26F0

Reply to: