Date: Mon, 4 Jan 1999 10:46:07 +0100 From: "Matus \"fantomas\" Uhlar" <uhlar@fantomas.sk> To: freebsd-bugs@FreeBSD.ORG Subject: Re: bin/9226: telnetd can log wrong IP address to utmp Message-ID: <19990104104607.B9389@fantomas.sk> In-Reply-To: <199812311900.LAA27384@freefall.freebsd.org>; from Jasper O'Malley on Thu, Dec 31, 1998 at 11:00:01AM -0800 References: <199812311900.LAA27384@freefall.freebsd.org>
next in thread | previous in thread | raw e-mail | index | archive | help
-> I've got a patch for src/libexec/telnetd/telnetd.c (in addition to my -> other patch already submitted for src/libexec/telnetd/sys_term.c) that -> does reverse-forward double-checking of source IP addresses before it -> passes the hostname argument to "login -h". If a forward lookup of the -> hostname generated by a reverse lookup of the IP address from the socket -> object doesn't result in that same IP address, the original IP address is -> what gets logged to utmp, not the bogus hostname, and not a bogus IP -> address. As usual, any connection from a host with an IP address that -> reverse resolves to a hostname longer than 16 characters is logged to utmp -> with the IP address. tcp_wrappers do this and I think it's enough; -- Matus "fantomas" Uhlar, sysadmin at NETLAB+ Kosice, Slovakia BIC coord for *.sk; admin of netlab.irc.sk; co-admin of irc.felk.cvut.cz To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-bugs" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?19990104104607.B9389>