Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. OpenSSH>
  3. Bugs
[Bug 1248] bug with HostbasedUsesNameFromPacketOnly
bugzilla-daemon at mindrot
Oct 4, 2006, 2:54 PM
Post #1 of 5 (1013 views)
Permalink
http://bugzilla.mindrot.org/show_bug.cgi?id=1248

Summary: bug with HostbasedUsesNameFromPacketOnly
Product: Portable OpenSSH
Version: 4.4p1
Platform: All
OS/Version: All
Status: NEW
Severity: normal
Priority: P2
Component: sshd
AssignedTo: bitbucket@mindrot.org
ReportedBy: res@qoxp.net


The server-side hostbased authentication logic strips any trailing dot
from the hostname supplied in the authentication request, which makes
sense because no one will enter hostnames with trailing dots in their
known-hosts lists.

The option HostbasedUsesNameFromPacketOnly has sshd skip checking the
reverse-lookup name of the client IP address against the
client-supplied hostname. However, the current code also skips
removing the trailing dot, the result of which is that hostbased
authentication fails completely, unless you go and add dots to all your
hostnames in the known-hosts file.

I am including a patch to fix this behavior.




------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
http://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 1248] bug with HostbasedUsesNameFromPacketOnly [ In reply to ]
bugzilla-daemon at mindrot
Oct 4, 2006, 3:53 PM
Post #2 of 5 (953 views)
Permalink
http://bugzilla.mindrot.org/show_bug.cgi?id=1248





------- Comment #1 from res@qoxp.net 2006-10-05 08:53 -------
Created an attachment (id=1198)
--> (http://bugzilla.mindrot.org/attachment.cgi?id=1198&action=view)
proposed patch




------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
http://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 1248] bug with HostbasedUsesNameFromPacketOnly [ In reply to ]
bugzilla-daemon at mindrot
Oct 4, 2006, 3:54 PM
Post #3 of 5 (941 views)
Permalink
http://bugzilla.mindrot.org/show_bug.cgi?id=1248


res@qoxp.net changed:

What |Removed |Added
----------------------------------------------------------------------------
CC| |res@qoxp.net




------- Comment #2 from res@qoxp.net 2006-10-05 08:54 -------
adding cc: myself




------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
http://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 1248] bug with HostbasedUsesNameFromPacketOnly [ In reply to ]
bugzilla-daemon at mindrot
Oct 4, 2006, 4:01 PM
Post #4 of 5 (959 views)
Permalink
http://bugzilla.mindrot.org/show_bug.cgi?id=1248


res@qoxp.net changed:

What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |RESOLVED
Resolution| |DUPLICATE




------- Comment #3 from res@qoxp.net 2006-10-05 09:01 -------
Hm. Completely forgot that I had already submitted this a few months
ago.

*** This bug has been marked as a duplicate of bug 1200 ***




------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
http://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 1248] bug with HostbasedUsesNameFromPacketOnly [ In reply to ]
bugzilla-daemon at mindrot
Oct 6, 2006, 6:46 PM
Post #5 of 5 (952 views)
Permalink
http://bugzilla.mindrot.org/show_bug.cgi?id=1248


dtucker@zip.com.au changed:

What |Removed |Added
----------------------------------------------------------------------------
Status|RESOLVED |CLOSED




------- Comment #4 from dtucker@zip.com.au 2006-10-07 11:46 -------
Change all RESOLVED bug to CLOSED with the exception of the ones fixed
post-4.4.




------- You are receiving this mail because: -------
You are the assignee for the bug, or are watching the assignee.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
http://lists.mindrot.org/mailman/listinfo/openssh-bugs

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal