On Tue, Sep 12, 2000 at 07:39:25PM +0300, Lehel Bernadt (blehel@kabelkon.ro) wrote: > > On 12-Sep-2000 kmself@ix.netcom.com wrote: > [...] > > Sometimes ssh works. Sometimes it doesn't: <...> > looks like a dns problem (?) Agreed. Though I'm not quite sure what's going on. > > Sep 12 01:10:32 lists sshd[1884]: refused connect from > > 207.171.xxx.xxx > > > > ...and looking at /etc/hosts.deny, we find at line 15: > > > > ALL: PARANOID > > The PARANOID option forces a dns lookup on the client. So if tcpd cannot > look up your hostname, it won't allow the connection. ...and as there are no other explicit "allow" directives, ssh fails....but why only most of the time. Curious. I've added an "sshd : ALL" line to /etc/hosts.allow. ssh now appears to work routinely. I'm chalking this up as a resolution, though I want to understand the DNS issues better. -- Karsten M. Self <kmself@ix.netcom.com> http://www.netcom.com/~kmself Evangelist, Opensales, Inc. http://www.opensales.org What part of "Gestalt" don't you understand? Debian GNU/Linux rocks! http://gestalt-system.sourceforge.net/ K5: http://www.kuro5hin.org GPG fingerprint: F932 8B25 5FDD 2528 D595 DC61 3847 889F 55F2 B9B0
Attachment:
pgpjQfX8NNaId.pgp
Description: PGP signature