Mailing List Archive
tlug.jp
Mailing List
tlug archive
tlug Mailing List Archive
|
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [tlug] Slooooooow down: logs, smartctl, DNS? [SOLVED?]
- Date: Wed, 19 Jan 2011 15:04:17 +0900
- From: Darren Cook <darren@example.com>
- Subject: Re: [tlug] Slooooooow down: logs, smartctl, DNS? [SOLVED?]
- References: <4D306C45.8080109@example.com> <20110114165007.18eb5840.jep200404@example.com> <4D311CE8.5020106@example.com> <AANLkTikKX32FFRvLbETMOMwxZ_scOx8iABuszOkuuWfg@example.com> <4D31CCD1.20506@example.com> <4D323FC1.3080803@example.com> <4D327BEB.5070806@example.com> <20110116074025.GA21244@example.com> <B94AB967-6FDE-4F2E-BC9D-03E088817FA5@example.com> <4D32D104.9060807@example.com> <AANLkTik9NEEWtMX3nAtRbvZyT4xh3MoXXYh6ow9fBiaa@example.com> <8739os8b9f.fsf@example.com> <AANLkTikV3MSZYmgY4S6ExrtSmNEKaBsRSvJZ9x7z2szp@example.com> <4D345E12.1060808@example.com> <4D3581EA.4080209@example.com> <4D363B0D.8030405@example.com> <87hbd579uc.fsf@example.com>
- User-agent: Mozilla/5.0 (X11; U; Linux x86_64; en-US; rv:1.9.2.13) Gecko/20101208 Thunderbird/3.1.7
>> So it is more than just for logging. But what security hole, if >> any, is being opened by switching [sshd's UseDNS] off? Is the >> answer different for a server on a LAN, and one that is listening >> on a global IP? >... > The security hole is the same in both cases; an attacker may be able > to spoof a machine where authorized users are supposed to exist from > a machine where they should not. A bit of googling on "address spoofing SSH" says it won't work; even if you say you are 1.2.3.4 the server will reply to the real 1.2.3.4, not to you. Taking the LAN case, if machine A only allows SSH access from machine B (192.16.1.2), and I found a way to get root access on machine C on that LAN, and gave machine C an additional IP of 192.16.1.2 I can see how it might work. But I still don't see how a DNS lookup changes anything: if I can change the IP address on machine C I can also change the hostname. (I realize I must be misunderstanding something, somewhere, or sshd wouldn't have the UseDns option :-) Darren -- Darren Cook, Software Researcher/Developer http://dcook.org/work/ (About me and my work) http://dcook.org/blogs.html (My blogs and articles)
- Follow-Ups:
- Re: [tlug] Slooooooow down: logs, smartctl, DNS? [SOLVED?]
- From: Stephen J. Turnbull
- Re: [tlug] Slooooooow down: logs, smartctl, DNS? [SOLVED?]
- References:
- [tlug] Slooooooow down
- From: Dave M G
- Re: [tlug] Slooooooow down: logs, smartctl, DNS?
- From: jep200404
- Re: [tlug] Slooooooow down: logs, smartctl, DNS?
- From: Dave M G
- Re: [tlug] Slooooooow down: logs, smartctl, DNS?
- From: Romeo Theriault
- Re: [tlug] Slooooooow down: logs, smartctl, DNS?
- From: Dave M G
- Re: [tlug] Slooooooow down: logs, smartctl, DNS?
- From: Darren Cook
- Re: [tlug] Slooooooow down: logs, smartctl, DNS?
- From: Dave M G
- Re: [tlug] Slooooooow down: logs, smartctl, DNS?
- From: Christian Horn
- Re: [tlug] Slooooooow down: logs, smartctl, DNS?
- From: mariod410
- Re: [tlug] Slooooooow down: logs, smartctl, DNS?
- From: Dave M G
- Re: [tlug] Slooooooow down: logs, smartctl, DNS?
- From: Mario De Tore
- Re: [tlug] Slooooooow down: logs, smartctl, DNS?
- From: Stephen J. Turnbull
- Re: [tlug] Slooooooow down: logs, smartctl, DNS?
- From: Mario De Tore
- Re: [tlug] Slooooooow down: logs, smartctl, DNS?
- From: Dave M G
- Re: [tlug] Slooooooow down: logs, smartctl, DNS? [SOLVED?]
- From: Dave M G
- Re: [tlug] Slooooooow down: logs, smartctl, DNS? [SOLVED?]
- From: Darren Cook
- Re: [tlug] Slooooooow down: logs, smartctl, DNS? [SOLVED?]
- From: Stephen J. Turnbull
- [tlug] Slooooooow down
- Prev by Date: Re: [tlug] LAN, but no internet
- Next by Date: Re: [tlug] LAN, but no internet
- Previous by thread: Re: [tlug] Slooooooow down: logs, smartctl, DNS? [SOLVED?]
- Next by thread: Re: [tlug] Slooooooow down: logs, smartctl, DNS? [SOLVED?]
- Index(es):
| Home Page | Mailing List | Linux and Japan | TLUG Members | Links |