- (djm) OpenBSD CVS Sync

- markus@cvs.openbsd.org 2003/06/02 09:17:34 [auth2-hostbased.c auth.c auth-options.c auth-rhosts.c auth-rh-rsa.c] [canohost.c monitor.c servconf.c servconf.h session.c sshd_config] [sshd_config.5] deprecate VerifyReverseMapping since it's dangerous if combined with IP based access control as noted by Mike Harding; replace with a UseDNS option, UseDNS is on by default and includes the VerifyReverseMapping check; with itojun@, provos@, jakob@ and deraadt@ ok deraadt@, djm@ - (djm) Fix portable-specific uses of verify_reverse_mapping too
author: Damien Miller <djm@mindrot.org> 2003-06-03 10:25:48 +1000
committer: Damien Miller <djm@mindrot.org> 2003-06-03 10:25:48 +1000
commit: 3a961dc0d36c1f87788b707130f6d07709822d38 (patch)
tree: 57f3a729408e4cbe08fa7f9699de2e583e0b2ca0 /auth.c
parent: 35276253a60a3e57ec21b82b2e3c81e03c0206de (diff)
1 files changed, 2 insertions, 2 deletions
diff --git a/auth.c b/auth.c
index 8b58cc67..6b48addf 100644
--- a/auth.c
+++ b/auth.c
@@ -23,7 +23,7 @@
  */
 
 #include "includes.h"
-RCSID("$OpenBSD: auth.c,v 1.47 2003/04/08 20:21:28 itojun Exp $");
+RCSID("$OpenBSD: auth.c,v 1.48 2003/06/02 09:17:34 markus Exp $");
 
 #ifdef HAVE_LOGIN_H
 #include <login.h>
@@ -141,7 +141,7 @@ allowed_user(struct passwd * pw)
 	}
 
 	if (options.num_deny_users > 0 || options.num_allow_users > 0) {
-		hostname = get_canonical_hostname(options.verify_reverse_mapping);
+		hostname = get_canonical_hostname(options.use_dns);
 		ipaddr = get_remote_ipaddr();
 	}
author	Damien Miller <djm@mindrot.org>	2003-06-03 10:25:48 +1000
committer	Damien Miller <djm@mindrot.org>	2003-06-03 10:25:48 +1000
commit	3a961dc0d36c1f87788b707130f6d07709822d38 (patch)
tree	57f3a729408e4cbe08fa7f9699de2e583e0b2ca0 /auth.c
parent	35276253a60a3e57ec21b82b2e3c81e03c0206de (diff)