[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: i cannot understand sshd behavior

Hi,

sorry for the delay.

On Tue, 13 Mar 2007, Douglas E. Engert wrote:

>> Does the reverse lookup (mapping ip to fqdn) work? Depending on 
>> /etc/nsswitch.conf something like this should give you a fqdn of the 
>> desired host name:
>
> Why do you thing there is a name mapping going on? You gave
> it an explicit IP ti try.

because the ssh client simply does a name lookup if you specify an ip 
address. Otherwise this wouldn't work, would it?

[fuchur] ~ % ssh -v 141.34.2.135 klist
OpenSSH_3.9p1, OpenSSL 0.9.7a Feb 19 2003
debug1: Reading configuration data /afs/ifh.de/user/a/ahaupt/.ssh/config
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Connecting to 141.34.2.135 [141.34.2.135] port 22.
debug1: Connection established.
debug1: identity file /afs/ifh.de/user/a/ahaupt/.ssh/identity type 0
debug1: identity file /afs/ifh.de/user/a/ahaupt/.ssh/id_rsa type -1
debug1: identity file /afs/ifh.de/user/a/ahaupt/.ssh/id_dsa type 2
debug1: Remote protocol version 2.0, remote software version OpenSSH_4.5
debug1: match: OpenSSH_4.5 pat OpenSSH*
debug1: Enabling compatibility mode for protocol 2.0
debug1: Local version string SSH-2.0-OpenSSH_3.9p1
debug1: SSH2_MSG_KEXINIT sent
debug1: SSH2_MSG_KEXINIT received
debug1: kex: server->client aes128-cbc hmac-md5 none
debug1: kex: client->server aes128-cbc hmac-md5 none
debug1: SSH2_MSG_KEX_DH_GEX_REQUEST(1024<1024<8192) sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_GROUP
debug1: SSH2_MSG_KEX_DH_GEX_INIT sent
debug1: expecting SSH2_MSG_KEX_DH_GEX_REPLY
debug1: Host '141.34.2.135' is known and matches the RSA host key.
debug1: Found key in /etc/ssh/ssh_known_hosts2:322
debug1: ssh_rsa_verify: signature correct
debug1: SSH2_MSG_NEWKEYS sent
debug1: expecting SSH2_MSG_NEWKEYS
debug1: SSH2_MSG_NEWKEYS received
debug1: SSH2_MSG_SERVICE_REQUEST sent
debug1: SSH2_MSG_SERVICE_ACCEPT received
debug1: Authentications that can continue: 
publickey,gssapi-with-mic,password
debug1: Next authentication method: gssapi-with-mic
debug1: Delegating credentials
debug1: Delegating credentials
debug1: Authentication succeeded (gssapi-with-mic).
debug1: channel 0: new [client-session]
debug1: Entering interactive session.
debug1: Requesting X11 forwarding with authentication spoofing.
debug1: Requesting authentication agent forwarding.
debug1: Sending command: klist
Credentials cache: FILE:/tmp/krb5cc_E11054
         Principal: ahaupt@IFH.DE

   Issued           Expires          Principal
Apr  3 15:06:06  Apr  4 15:26:58  krbtgt/IFH.DE@IFH.DE
Apr  3 15:06:06  Apr  4 15:26:58  afs@IFH.DE
debug1: client_input_channel_req: channel 0 rtype exit-status reply 0
debug1: channel 0: free: client-session, nchannels 1
debug1: Transferred: stdin 0, stdout 0, stderr 0 bytes in 0.3 seconds
debug1: Bytes per second: stdin 0.0, stdout 0.0, stderr 0.0
debug1: Exit status 0
[fuchur] ~ %

Cheers,
Andreas

-- 
| Andreas Haupt                | E-Mail: andreas.haupt@desy.de
|  DESY Zeuthen                | WWW:    http://www-zeuthen.desy.de/~ahaupt
|  Platanenallee 6             | Phone:  +49/33762/7-7359
|  D-15738 Zeuthen             | Fax:    +49/33762/7-7216