diff options
author | Eric Light <eric@ericlight.com> | 2016-05-19 20:58:52 +0300 |
---|---|---|
committer | Michael Boelen <michael@cisofy.com> | 2016-05-19 20:58:52 +0300 |
commit | 47748c8fd834b0d3fc77571a232859b3ff81b9cc (patch) | |
tree | 0c995ad4c3d7f09f41d37ecdf19a391df6b1428c /include/tests_ssh | |
parent | e8d6308d825c3488726acfbc0bbf4da3dd069621 (diff) |
UseDNS = No is a safer configuration (#204)
See Issue #197.
References:
- https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/424371/comments/11
- https://unix.stackexchange.com/questions/56941/what-is-the-point-of-sshd-usedns-option
- https://security.googleblog.com/2016/02/cve-2015-7547-glibc-getaddrinfo-stack.html
Diffstat (limited to 'include/tests_ssh')
-rw-r--r-- | include/tests_ssh | 2 |
1 files changed, 1 insertions, 1 deletions
diff --git a/include/tests_ssh b/include/tests_ssh index 774b6074..a78a44ef 100644 --- a/include/tests_ssh +++ b/include/tests_ssh @@ -126,7 +126,7 @@ Protocol:2,,1:=\ StrictModes:YES,,NO:=\ TCPKeepAlive:NO,,YES:=\ - UseDNS:YES,,NO:=\ + UseDNS:NO,,YES:=\ UsePrivilegeSeparation:SANDBOX,YES,NO:=\ VerifyReverseMapping:YES,,NO:=\ X11Forwarding:NO,,YES:=" |