[dns-operations] is anybody awake at 5.0.1.0.0.2.ip6.arpa? (comcast and/or arin)
Paul Vixie
vixie at fsi.io
Tue Oct 6 05:42:17 UTC 2020
On Monday, October 5, 2020 8:24:09 PM PDT Robert Edmonds wrote:
> Paul Vixie wrote:
> > ssh gets hinky when i connect from a server whose PTR is "servfail"
> > (dnssec
> > "bogus")
>
> Unless you're using host-based authentication or the from= option with a
> hostname pattern in an authorized_keys file, you can set "UseDNS no" in
> the sshd config file, or upgrade to OpenSSH 6.8p1 or later where "UseDNS
> no" is the default.
it's this way on purpose, not only a default. port knockers need PTR's here.
--
Vixie @FSI
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <https://lists.dns-oarc.net/pipermail/dns-operations/attachments/20201005/98dcc2bd/attachment.html>
More information about the dns-operations
mailing list