Re: apparent change in hostnames on LAN without admin intervention

To: debian-user@lists.debian.org
Subject: Re: apparent change in hostnames on LAN without admin intervention
From: Jape Person <japers@comcast.net>
Date: Sat, 14 Dec 2019 14:05:01 -0500
Message-id: <[🔎] c33642a9-43af-fb09-df53-082f4e81fd92@comcast.net>
In-reply-to: <[🔎] 20191214085633.rsvupr4qi7a3qoh7@localhost>
References: <[🔎] 1c17ecb2-ab3f-b2b4-327b-f8a1e48d453e@comcast.net> <[🔎] 20191214085633.rsvupr4qi7a3qoh7@localhost>

On 12/14/19 3:56 AM, Andrei POPESCU wrote:

On Vi, 13 dec 19, 19:33:51, Jape Person wrote:

Hi folks. Did I miss something?

I've had 3 Sid/testing systems running on the same LAN behind the same
router for just shy of 3 years. Their static IP addresses have always been
issued by the DHCP server on the router. Everything has been copacetic among
the systems, with local and outside name resolution working with no issue.

A little over a week ago the systems stopped being able to access each other
by name. No changes were made in the settings or firmware of the router or
of the local network settings on the systems.

I discovered that all of the hostnames had changed from xxxxxx.local to
xxxxxx. I've tried to determine the cause of this alteration in the
hostnames on the LAN.


Please provide more info on this, specifically where / how are the
hostnames configured and where / how did you discover they changed.

Do note that .local is typically used by mDNS and in my understanding it
should not be used with a DNS server.

https://en.wikipedia.org/wiki/.local

Kind regards,
Andrei

Hi, Andrei.

The hostnames and local domain name were used during installation.

The static DHCP addresses are issued by a Luxul XWR-1750 router which associates the hostnames withthe MAC and IP addresses.


Contents of /etc/resolv.conf:

search local
nameserver 208.67.220.220

I discovered the change a few days ago when I was doing my daily check for updates by using SSH toconnect to two of the systems. I received the following response to the connection command:


ssh: Could not resolve hostname chip-nuc.local: Name or service not known

I checked to make sure I could connect to everything by IP address, and I checked DNS on the outsideworld. Everything looked okay.


On a hunch I tried omitting the .local from the connection command, and it work on each client.

I figured any time the name of a client changes without deliberate action on the part of the networkadmin (however incompetent he may be), that could be a security issue. That's why I asked here.


Thanks,
JP

Reply to:

Follow-Ups:
- Re: apparent change in hostnames on LAN without admin intervention
  - From: Brian <ad44@cityscape.co.uk>
- Re: apparent change in hostnames on LAN without admin intervention
  - From: Andrei POPESCU <andreimpopescu@gmail.com>
- Re: apparent change in hostnames on LAN without admin intervention
  - From: "tv.debian@googlemail.com" <tv.debian@googlemail.com>

References:
- apparent change in hostnames on LAN without admin intervention
  - From: Jape Person <japers@comcast.net>
- Re: apparent change in hostnames on LAN without admin intervention
  - From: Andrei POPESCU <andreimpopescu@gmail.com>

Prev by Date: Re: apparent change in hostnames on LAN without admin intervention
Next by Date: Re: apparent change in hostnames on LAN without admin intervention
Previous by thread: Re: apparent change in hostnames on LAN without admin intervention
Next by thread: Re: apparent change in hostnames on LAN without admin intervention
Index(es):
- Date
- Thread