diff options
| author | Damien Miller <djm@mindrot.org> | 2003-06-03 10:25:48 +1000 |
|---|---|---|
| committer | Damien Miller <djm@mindrot.org> | 2003-06-03 10:25:48 +1000 |
| commit | 3a961dc0d36c1f87788b707130f6d07709822d38 (patch) | |
| tree | 57f3a729408e4cbe08fa7f9699de2e583e0b2ca0 /auth.c | |
| parent | 35276253a60a3e57ec21b82b2e3c81e03c0206de (diff) | |
- (djm) OpenBSD CVS Sync
- markus@cvs.openbsd.org 2003/06/02 09:17:34
[auth2-hostbased.c auth.c auth-options.c auth-rhosts.c auth-rh-rsa.c]
[canohost.c monitor.c servconf.c servconf.h session.c sshd_config]
[sshd_config.5]
deprecate VerifyReverseMapping since it's dangerous if combined
with IP based access control as noted by Mike Harding; replace with
a UseDNS option, UseDNS is on by default and includes the
VerifyReverseMapping check; with itojun@, provos@, jakob@ and deraadt@
ok deraadt@, djm@
- (djm) Fix portable-specific uses of verify_reverse_mapping too
Diffstat (limited to 'auth.c')
| -rw-r--r-- | auth.c | 4 |
1 files changed, 2 insertions, 2 deletions
| @@ -23,7 +23,7 @@ | |||
| 23 | */ | 23 | */ |
| 24 | 24 | ||
| 25 | #include "includes.h" | 25 | #include "includes.h" |
| 26 | RCSID("$OpenBSD: auth.c,v 1.47 2003/04/08 20:21:28 itojun Exp $"); | 26 | RCSID("$OpenBSD: auth.c,v 1.48 2003/06/02 09:17:34 markus Exp $"); |
| 27 | 27 | ||
| 28 | #ifdef HAVE_LOGIN_H | 28 | #ifdef HAVE_LOGIN_H |
| 29 | #include <login.h> | 29 | #include <login.h> |
| @@ -141,7 +141,7 @@ allowed_user(struct passwd * pw) | |||
| 141 | } | 141 | } |
| 142 | 142 | ||
| 143 | if (options.num_deny_users > 0 || options.num_allow_users > 0) { | 143 | if (options.num_deny_users > 0 || options.num_allow_users > 0) { |
| 144 | hostname = get_canonical_hostname(options.verify_reverse_mapping); | 144 | hostname = get_canonical_hostname(options.use_dns); |
| 145 | ipaddr = get_remote_ipaddr(); | 145 | ipaddr = get_remote_ipaddr(); |
| 146 | } | 146 | } |
| 147 | 147 | ||