- (djm) OpenBSD CVS Sync - markus@cvs.openbsd.org 2003/06/02 09:17:34 [auth2-hostbased.c auth.c auth-options.c auth-rhosts.c auth-rh-rsa.c] [canohost.c monitor.c servconf.c servconf.h session.c sshd_config] [sshd_config.5] deprecate VerifyReverseMapping since it's dangerous if combined with IP based access control as noted by Mike Harding; replace with a UseDNS option, UseDNS is on by default and includes the VerifyReverseMapping check; with itojun@, provos@, jakob@ and deraadt@ ok deraadt@, djm@ - (djm) Fix portable-specific uses of verify_reverse_mapping too

commit: 3a961dc0d36c1f87788b707130f6d07709822d38 [log] [tgz]
author: Damien Miller <djm@mindrot.org> Tue Jun 03 10:25:48 2003 +1000
committer: Damien Miller <djm@mindrot.org> Tue Jun 03 10:25:48 2003 +1000
tree: 57f3a729408e4cbe08fa7f9699de2e583e0b2ca0
parent: 35276253a60a3e57ec21b82b2e3c81e03c0206de [diff] [blame]
diff --git a/servconf.h b/servconf.h
index 4ad1ee7..b676f2b 100644
--- a/servconf.h
+++ b/servconf.h

@@ -1,4 +1,4 @@
-/*	$OpenBSD: servconf.h,v 1.60 2003/05/15 01:48:10 jakob Exp $	*/
+/*	$OpenBSD: servconf.h,v 1.61 2003/06/02 09:17:34 markus Exp $	*/
 
 /*
  * Author: Tatu Ylonen <ylo@cs.hut.fi>
@@ -112,7 +112,7 @@
 	int	max_startups_rate;
 	int	max_startups;
 	char   *banner;			/* SSH-2 banner message */
-	int	verify_reverse_mapping;	/* cross-check ip and dns */
+	int	use_dns;
 	int	client_alive_interval;	/*
 					 * poke the client this often to
 					 * see if it's still there
commit	3a961dc0d36c1f87788b707130f6d07709822d38	[log] [tgz]
author	Damien Miller <djm@mindrot.org>	Tue Jun 03 10:25:48 2003 +1000
committer	Damien Miller <djm@mindrot.org>	Tue Jun 03 10:25:48 2003 +1000
tree	57f3a729408e4cbe08fa7f9699de2e583e0b2ca0
parent	35276253a60a3e57ec21b82b2e3c81e03c0206de [diff] [blame]