search for: auth_rhosts2_raw

According to the manpage: UseDNS Specifies whether sshd should look up the remote host name and check that the resolved host name for the remote IP address maps back to the very same IP address. The default is ``yes''. Thing is, while sshd *checks*, this doesn't actually control whether or not the client is allowed to connect, it seems at most to be an option that causes

...t users. When such control is desired, it is truly beneficial to supplement it with corresponding information in the log. In other words, sshd log should get a message that says which client user from which hostname and IP address logins as which local user. In v5.8p2 such a message only comes from auth_rhosts2_raw() in auth-rhosts.c and the message is at syslog priority DEBUG2. Thus, it is not possible to get details about client user without running sshd with log level as high as DEBUG2. It would be highly desirable if this message or a similar message reporting client_user had priority INFO. -- You are r...

...to the OpenBSD version? Does the openbsd version even use autocrap? --- openssh-4.2p1/auth-rhosts.c~ 2005-07-17 08:22:45.000000000 +0100 +++ openssh-4.2p1/auth-rhosts.c 2006-01-07 18:14:32.000000000 +0000 @@ -289,7 +289,9 @@ auth_rhosts2(struct passwd *pw, const ch auth_debug_reset(); ret = auth_rhosts2_raw(pw, client_user, hostname, ipaddr); +#ifdef USE_PRIVSEP if (!use_privsep) +#endif auth_debug_send(); return ret; } --- openssh-4.2p1/auth2.c~ 2005-07-17 08:26:44.000000000 +0100 +++ openssh-4.2p1/auth2.c 2006-01-07 18:52:24.000000000 +0000 @@ -175,8 +175,10 @@ input_userauth_request(int typ...

...Sat Oct 4 23:02:16 2003 @@ -26,7 +26,9 @@ /* import */ extern ServerOptions options; +#ifndef DISABLE_PRIVSEP extern int use_privsep; +#endif /* DISABLE_PRIVSEP */ /* * This function processes an rhosts-style file (.rhosts, .shosts, or @@ -293,7 +295,9 @@ auth_debug_reset(); ret = auth_rhosts2_raw(pw, client_user, hostname, ipaddr); +#ifndef DISABLE_PRIVSEP if (!use_privsep) +#endif /* DISABLE_PRIVSEP */ auth_debug_send(); return ret; } diff -adurN openssh-3.7.1p2.privsep/auth-skey.c openssh-3.7.1p2/auth-skey.c --- openssh-3.7.1p2.privsep/auth-skey.c Thu Jul 4 04:14:18 2002 +++ open...