Unless this has recently been changed in tcpd that is incorrect.
Even if no PTR record is recorded with the authoriatative name servers
tcpd will return a message with the offending ip address.
If unknown was returned it was because of some -special- condition. I
would have to read the code to see what that is however ;-)
j.
On Wed, 5 Jun 1996, Steve Bergeon wrote:
> Wrappers were unable to verify the systems name and ip address match.
> This could just be someone attempting access from an isp that does not
> have dns names assigned to all of its' address space. Or...
>
> If you want unresolvable systems to have access to a service, you can
> use the keyword UNKNOWN in your hosts.allow file.
>
>
> On Jun 4, 10:31pm, Chris Watson allegedly wrote:
> | Subject: unknown in tcpwrappers?
> |
> | what does this mean?
> |
> | Jun 4 22:21:48 orion telnetd[9207]: refused connect from unknown
> |
> | whats the unknown part? what causes this? is this a denied spoof attempt?
> | or is it a DNS failure?
> |
> |
> | --
> |
> | ===================================| Webspan Inc., ISP Division.
> | FreeBSD 2.1.0 is available now! | Phone: 908-367-8030 ext. 126
> | -----------------------------------| 500 West Kennedy Blvd., Lakewood,
> NJ-08701
> | Turning PCs into Workstations | E-Mail: scanner @
webspan .
net
> | http://www.freebsd.org | SysAdmin / Network Engineer / Security
> | ===================================| Member BSDNET team!
> http://www.bsdnet.org
> |
> |
> |
> |-- End of excerpt blamed on Chris Watson
>
>
>
> --
> (713) 917-0425 Office
> "Spirit is the journey, Body is the Bus.
> I am the driver, From Dust to dust." - Jaluka
> - PGP Keys: http://www-swiss.ai.mit.edu/~bal/pks-toplev.html
>
References:
|
|
