Bugtraq mailing list archives
Re: ProFTPd and reverse DNS
From: Noah <sitz () onastick net>
Date: Sat, 8 Sep 2001 02:35:34 -0400 (EDT)
On Fri, 7 Sep 2001, Michael S. Fischer wrote:
On Fri, Sep 07, 2001 at 03:38:27PM -0600, Matthew S . Hallacy wrote:Recently while browsing through security logs I noticed that quite a few of the hosts connecting to the machine did not resolve, I've checked into it, and apparently ProFTPd does not check forward to reverse DNS mappings, and only resolves the IP address connecting.
[snip]
Another potentially useful workaround is to configure ProFTPd to run out of inetd, using TCP Wrappers to enforce paranoid DNS checks. This way you can have your cake and eat it too.
Alternatively, one could use mod_wrap: http://rad.geology.washington.edu/~tj/proftpd/ Cheers, Noah
Current thread:
- ProFTPd and reverse DNS Matthew S . Hallacy (Sep 07)
- Re: ProFTPd and reverse DNS Michael S. Fischer (Sep 07)
- Re: ProFTPd and reverse DNS Noah (Sep 08)
- Re: ProFTPd and reverse DNS Krzysztof Halasa (Sep 08)
- Re: ProFTPd and reverse DNS The Flying Hamster (Sep 08)
- Re: ProFTPd and reverse DNS Peter van Dijk (Sep 08)
- RE: ProFTPd and reverse DNS Jeroen Massar (Sep 08)
- Re: ProFTPd and reverse DNS Karsten W. Rohrbach (Sep 11)
- Re: ProFTPd and reverse DNS Michael S. Fischer (Sep 07)