BackupPC-users
[Top] [All Lists]
<prev [Date] next>
[Advanced]
 <prev [Thread] next>

Re: [BackupPC-users] heads up for newer versions of openssh

2016-05-12 10:34:14
Subject: Re: [BackupPC-users] heads up for newer versions of openssh
From: Dan Pritts <danno AT umich DOT edu>
To: "General list for user discussion, questions and support" <backuppc-users AT lists.sourceforge DOT net>
Date: Thu, 12 May 2016 10:21:26 -0400


May 11, 2016 at 2:46 PM
I found after several days of wrestling that UseDNS now defaults to "no" in
newer versions of openssh. This causes a from="hostname" clause in authorized_keys
to reject the connection. You either have to... 1. use an ip address from="x.x.x.x"
2. set "UseDNS yes" in sshd_config or 3. omit "from=" altogether. Hope this helps
someone.

Unless you are using DNSSEC broadly (unless you know all about it, you aren't), depending on DNS for security is a bad idea.  This is a positive change, but a bummer that it's bitten you.

danno
--
Dan Pritts
ICPSR Computing & Network Services
University of Michigan 

------------------------------------------------------------------------------
Mobile security can be enabling, not merely restricting. Employees who
bring their own devices (BYOD) to work are irked by the imposition of MDM
restrictions. Mobile Device Manager Plus allows you to control only the
apps on BYO-devices by containerizing them, leaving personal data untouched!
https://ad.doubleclick.net/ddm/clk/304595813;131938128;j
_______________________________________________
BackupPC-users mailing list
BackupPC-users AT lists.sourceforge DOT net
List:    https://lists.sourceforge.net/lists/listinfo/backuppc-users
Wiki:    http://backuppc.wiki.sourceforge.net
Project: http://backuppc.sourceforge.net/
[More with this subject...]
<Prev in Thread] Current Thread [Next in Thread>
Previous by Date:  [BackupPC-users] Ftp fails, Søren Brønsted
Next by Date:  Re: [BackupPC-users] Backup aborted (tar:712 Total bytes received: 86681), Smith, Graham - Computing Technical Officer
Previous by Thread:  Re: [BackupPC-users] heads up for newer versions of openssh, Carl Wilhelm Soderstrom
Next by Thread:  Re: [BackupPC-users] heads up for newer versions of openssh, Joe Konecny
Indexes:  [Date] [Thread] [Top] [All Lists]