Hallo ! I habe schon länger Suse 7.2 auf meinem Server installiert. Dann habe ich tcpd für sshd in der inetd konfiguriert. Heute habe ich "bind" mit einem RPM für Suse 7.2. Ich habe die Konfig belassen wie sie im RPM war. Aber TCPD macht KEIN reverse lookup von IP Adressen 1) Wenn ich folgende eingebe um die Funtion des reverse lookup zu prüfen: root@fire-linux:/home/awuerfli > tcpdmatch sshd localhost warning: host address ::ffff:127.0.0.1->name lookup failed client: address ::ffff:127.0.0.1 server: process sshd matched: /etc/hosts.allow line 9 access: granted client: hostname localhost client: address ::1 server: process sshd matched: /etc/hosts.allow line 9 access: granted warning: host address 7f00:1:6c6f:6361:6c68:6f73:7400:0->name lookup failed client: address 7f00:1:6c6f:6361:6c68:6f73:7400:0 server: process sshd matched: /etc/hosts.deny line 1 access: denied root@fire-linux:/home/awuerfli > 2) Aber dann dürfte doch "nslookup" nicht funktionieren, oder ? root@fire-linux:/home/awuerfli > nslookup Default Server: localhost Address: 127.0.0.1
127.0.0.1 Server: localhost Address: 127.0.0.1
Name: localhost Address: 127.0.0.1 3) Dasselbe geht auch mit einer anderen IP Adresse (example: 62.99.189.10)
62.99.189.10 Server: localhost Address: 127.0.0.1
Name: static62-99-188-10.adsl.inode.at Address: 62.99.189.10 So - warum geht "tcpdmatch" und damit tcpd nicht ?? Meine /etc/hosts.conf root@fire-linux:/home/awuerfli > cat /etc/host.conf # # /etc/host.conf - resolver configuration file # # Please read the manual page host.conf(5) for more information. # # # The following option is only used by binaries linked against # libc4 or libc5. This line should be in sync with the "hosts" # option in /etc/nsswitch.conf. # # # The following options are used by the resolver library: # order hosts,bind multi on this is my nsswitch.conf root@fire-linux:/home/awuerfli > cat /etc/nsswitch.conf # # /etc/nsswitch.conf # # An example Name Service Switch config file. This file should be # sorted with the most-used services at the beginning. # # The entry '[NOTFOUND=return]' means that the search for an # entry should stop if the search in the previous entry turned # up nothing. Note that if the search failed due to some other reason # (like no NIS server responding) then the search continues with the # next entry. # # Legal entries are: # # compat Use Libc5 compatibility setup # nisplus Use NIS+ (NIS version 3) # nis Use NIS (NIS version 2), also called YP # dns Use DNS (Domain Name Service) for IPv4 only # dns6 Use DNS for IPv4 and IPv6 # files Use the local files # db Use the /var/db databases # [NOTFOUND=return] Stop searching if not found so far # # For more information, please read the nsswitch.conf.5 manual page. # # passwd: files nis # shadow: files nis # group: files nis passwd: compat group: compat hosts: files dns networks: files dns services: files protocols: files rpc: files ethers: files netmasks: files netgroup: files publickey: files bootparams: files automount: files aliases: files Bitte helft mir ! Jeder Hinweis ist willkommen. Alexander