- (djm) OpenBSD CVS Sync

- markus@cvs.openbsd.org 2003/06/02 09:17:34 [auth2-hostbased.c auth.c auth-options.c auth-rhosts.c auth-rh-rsa.c] [canohost.c monitor.c servconf.c servconf.h session.c sshd_config] [sshd_config.5] deprecate VerifyReverseMapping since it's dangerous if combined with IP based access control as noted by Mike Harding; replace with a UseDNS option, UseDNS is on by default and includes the VerifyReverseMapping check; with itojun@, provos@, jakob@ and deraadt@ ok deraadt@, djm@ - (djm) Fix portable-specific uses of verify_reverse_mapping too
author: Damien Miller <djm@mindrot.org> 2003-06-03 10:25:48 +1000
committer: Damien Miller <djm@mindrot.org> 2003-06-03 10:25:48 +1000
commit: 3a961dc0d36c1f87788b707130f6d07709822d38 (patch)
tree: 57f3a729408e4cbe08fa7f9699de2e583e0b2ca0 /auth-options.c
parent: 35276253a60a3e57ec21b82b2e3c81e03c0206de (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/auth-options.c b/auth-options.c
index d8976b172..0e146ab15 100644
--- a/auth-options.c
+++ b/auth-options.c
@@ -10,7 +10,7 @@
 */
 #include "includes.h"
-RCSID("$OpenBSD: auth-options.c,v 1.27 2003/04/08 20:21:28 itojun Exp $");
+RCSID("$OpenBSD: auth-options.c,v 1.28 2003/06/02 09:17:34 markus Exp $");
 #include "xmalloc.h"
 #include "match.h"
@@ -173,7 +173,7 @@ auth_parse_options(struct passwd *pw, char *opts, char *file, u_long linenum)
                if (strncasecmp(opts, cp, strlen(cp)) == 0) {
                        const char *remote_ip = get_remote_ipaddr();
                        const char *remote_host = get_canonical_hostname(
-                            options.verify_reverse_mapping);
+                            options.use_dns);
                        char *patterns = xmalloc(strlen(opts) + 1);
                        opts += strlen(cp);
author	Damien Miller <djm@mindrot.org>	2003-06-03 10:25:48 +1000
committer	Damien Miller <djm@mindrot.org>	2003-06-03 10:25:48 +1000
commit	3a961dc0d36c1f87788b707130f6d07709822d38 (patch)
tree	57f3a729408e4cbe08fa7f9699de2e583e0b2ca0 /auth-options.c
parent	35276253a60a3e57ec21b82b2e3c81e03c0206de (diff)

diff --git a/auth-options.c b/auth-options.c index d8976b172..0e146ab15 100644 --- a/auth-options.c +++ b/auth-options.c
@@ -10,7 +10,7 @@
10	*/	10	*/
11		11
12	#include "includes.h"	12	#include "includes.h"
13	RCSID("$OpenBSD: auth-options.c,v 1.27 2003/04/08 20:21:28 itojun Exp $");	13	RCSID("$OpenBSD: auth-options.c,v 1.28 2003/06/02 09:17:34 markus Exp $");
14		14
15	#include "xmalloc.h"	15	#include "xmalloc.h"
16	#include "match.h"	16	#include "match.h"
@@ -173,7 +173,7 @@ auth_parse_options(struct passwd pw, char opts, char *file, u_long linenum)
173	if (strncasecmp(opts, cp, strlen(cp)) == 0) {	173	if (strncasecmp(opts, cp, strlen(cp)) == 0) {
174	const char *remote_ip = get_remote_ipaddr();	174	const char *remote_ip = get_remote_ipaddr();
175	const char *remote_host = get_canonical_hostname(	175	const char *remote_host = get_canonical_hostname(
176	options.verify_reverse_mapping);	176	options.use_dns);
177	char *patterns = xmalloc(strlen(opts) + 1);	177	char *patterns = xmalloc(strlen(opts) + 1);
178		178
179	opts += strlen(cp);	179	opts += strlen(cp);