On Mon, 12 Apr 1999, Brian Somers wrote: > [.....] > > I got sick of seing "invalid hostname" in my wtmps a while ago on my 2.x > > machines. That is an exceptionally useless piece of behavior, if you ask > > me. Sshd writes out IPs and I find that to be much more consistent (and > > useful). > > Sshd gets it wrong though. It gets the full hostname and then a > freebsd patch changes that to an IP if the name is >UT_HOSTSIZE.
I don't use the FreeBSD patched version, as I use the version with the KerberosIV patches (unfortunately the FreeBSD port doesn't do that, but I don't have time just now to make it do that :-). It seems to put the IP address into the wtmp correctly. But anyhow; my preference is still to either a) using only IP addresses, or b) using two fields, one for each. Given that connections logically come from IP addresses, performing a transformation based on an unreliable insecure mechanism like DNS seems like a bad idea. It's convenient to look at (hence a look at option b). Robert N Watson rob...@fledge.watson.org http://www.watson.org/~robert/ PGP key fingerprint: 03 01 DD 8E 15 67 48 73 25 6D 10 FC EC 68 C1 1C Carnegie Mellon University http://www.cmu.edu/ TIS Labs at Network Associates, Inc. http://www.tis.com/ Safeport Network Services http://www.safeport.com/ To Unsubscribe: send mail to majord...@freebsd.org with "unsubscribe freebsd-current" in the body of the message
