On Thu, Jun 17, 2004 at 10:49:18PM -0400, David Brodbeck wrote:
> The thing is, I don't really see the point of the reverse DNS check. It
> doesn't accomplish anything. Someone claimed earlier that it's a form of
> server authentication, but it isn't really, because whoever controls
> reverse DNS for that IP can stick whatever they want in there. Looking up
> the A record tells you a lot more.
And looking up both tells you even more.
google: tcpd paranoid "name does not match"
> for that netblock set that value. It's almost as easy to fake as an
> identd lookup, and those are widely regarded as useless these days. But
identd is only regarded as useless by those who misunderstand its true
purpose.
MBM
--
Matthew Byng-Maddick <mbm@???> http://colondot.net/
(Please use this address to reply)