Package: openssh-client Version: 1:4.2p1-4 Severity: normal I started getting this in my cron jobs a couple of days ago: Address 64.62.161.42 maps to kitenet.net, but this does not map back to the address - POSSIBLE BREAKIN ATTEMPT! This turned out to happen whenever I sshed to svn.mooix.net from kitenet.net. It seemed unlikely since both are on the same host, which also runs the dns server for both domains. It's true that the reverse dns for 64.62.161.42 maps to kitenet.net, and not to svn.mooix.net. That's always been the case though and I never got these messages before. I finally found this in an ltrace: strcmp("64.62.161.42", "127.0.0.1") = 5 freeaddrinfo(0x8095ac8) = <void> vsnprintf("Address 64.62.161.42 maps to kit"..., 1024, "Address %.100s maps to %.600s, b"..., 0xbfffe2d4) = 111 Apparently the 127.0.0.1 was coming up because I had this in /etc/hosts: 127.0.0.1 kitenet.net kite localhost After changing this to list only localhost, ssh shut up. This seems broken and I don't know why it only just started happening. My /etc/hosts has looked this way since 2003 and I've never seen this warning from ssh before. I guess that the getaddrinfo calls that it uses might have started behaving differently or something like that? -- System Information: Debian Release: testing/unstable APT prefers unstable APT policy: (500, 'unstable'), (1, 'experimental') Architecture: i386 (i686) Shell: /bin/sh linked to /bin/bash Kernel: Linux 2.4.27 Locale: LANG=en_US.UTF-8, LC_CTYPE=en_US.UTF-8 (charmap=UTF-8) Versions of packages openssh-client depends on: ii adduser 3.67.0 Add and remove users and groups ii debconf [debconf-2. 1.4.58 Debian configuration management sy ii dpkg 1.13.11 package maintenance system for Deb ii libc6 2.3.5-6 GNU C Library: Shared libraries an ii libcomerr2 1.38-2 common error description library ii libedit2 2.9.cvs.20050518-2.2 BSD editline and history libraries ii libkrb53 1.3.6-5 MIT Kerberos runtime libraries ii libncurses5 5.4-9 Shared libraries for terminal hand ii libselinux1 1.26-1 SELinux shared libraries ii libssl0.9.7 0.9.7g-2 SSL shared libraries ii zlib1g 1:1.2.3-4 compression library - runtime openssh-client recommends no packages. -- no debconf information -- see shy jo
Attachment:
signature.asc
Description: Digital signature