Hi, The default value for the option CanonicalizeFallbackLocal. In the manual, The default value "no". CanonicalizeFallbackLocal Specifies whether to fail with an error when hostname canonical- ization fails. The default, ?no?, will attempt to look up the unqualified hostname using the system resolver?s search rules. A value of ?yes? will cause ssh(1) to fail instantly if CanonicalizeHostname is enabled and the target hostname cannot be found in any of the domains specified by CanonicalDomains. but, I think in the "yes". In the source code... 1476 initialize_options(Options * options) 1477 { 1561 options->canonicalize_fallback_local = -1; 1563 } 1571 fill_default_options(Options * options) 1572 { 1720 if (options->canonicalize_fallback_local == -1) 1721 options->canonicalize_fallback_local = 1; 1738 } try, "myserver" can name resolution but, "myserver.localdomain.local" can not. <.ssh/config> CanonicalizeHostname yes CanonicalDomains localdomain.local CanonicalizeFallbackLocal no $ ssh root at myserver ssh: Could not resolve host "myserver" Not connected. <.ssh/config> CanonicalizeHostname yes CanonicalDomains localdomain.local #CanonicalizeFallbackLocal no <- comment out $ ssh root at myserver Last login: Sun Jan 19 02:51:12 2014 from 192.168.x.x root at myserver:~$ Connected. When the settings have not been, I fall back. This is the behavior when it is set to "yes". Thanks.
On Sun, 19 Jan 2014, togakushi wrote:> Hi, > > The default value for the option CanonicalizeFallbackLocal. > > In the manual, The default value "no". > > CanonicalizeFallbackLocal > Specifies whether to fail with an error when hostname canonical- > ization fails. The default, ?no?, will attempt to look up the > unqualified hostname using the system resolver?s search rules. A > value of ?yes? will cause ssh(1) to fail instantly if > CanonicalizeHostname is enabled and the target hostname cannot be > found in any of the domains specified by CanonicalDomains. > > but, I think in the "yes". > In the source code...Thanks - the manpage is wrong: Index: ssh_config.5 ==================================================================RCS file: /cvs/src/usr.bin/ssh/ssh_config.5,v retrieving revision 1.183 diff -u -p -r1.183 ssh_config.5 --- ssh_config.5 7 Dec 2013 11:58:46 -0000 1.183 +++ ssh_config.5 19 Jan 2014 04:46:57 -0000 @@ -229,11 +229,11 @@ search for the specified destination hos .It Cm CanonicalizeFallbackLocal Specifies whether to fail with an error when hostname canonicalization fails. The default, -.Dq no , +.Dq yes , will attempt to look up the unqualified hostname using the system resolver's search rules. A value of -.Dq yes +.Dq no will cause .Xr ssh 1 to fail instantly if
Maybe Matching Threads
- [Bug 3555] New: ForwardAgent doesn't work under Match canonical
- [PATCH] Basic SCTP support for OpenSSH client and server
- [Bug 2286] New: Port ignored when re-reading config after canonicalization
- [Bug 2562] New: CanonicalizeHostname causes duplicate LocalForward attempts
- CanonicalHostname and ssh connections through a jumphost