[Top][All Lists]
[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
Re: [Sks-devel] odd SKS recon issues (rDNS issues?)
From: |
Chris Kuethe |
Subject: |
Re: [Sks-devel] odd SKS recon issues (rDNS issues?) |
Date: |
Thu, 19 Aug 2004 23:44:16 -0600 (MDT) |
try restarting sks recon, and check the first couple of lines of debug
output. you should see sks doing name lookups on all the hostnames.
perhaps you didn't get a few dns responses last time you restarted sks?
CK
On Thu, 19 Aug 2004, Dan Egli wrote:
I was browsing my logs today, and notied it saying that unauthorised hosts
were reconing with me. I thought that weird. So I looked them up. Wait a
minute. These "unauthorised" hosts ARE in my membership file!
Here's some examples:
2004-08-19 23:10:40 Reconciliation attempt from unauthorized host <ADDR_INET
68.91.150.25:3905>. Ignoring
2004-08-19 23:10:40 Reconciliation attempt from unauthorized host <ADDR_INET
129.128.11.77:2766>. Ignoring
2004-08-19 23:11:27 Reconciliation attempt from unauthorized host <ADDR_INET
66.119.199.39:40111>. Ignoring
But:
address@hidden sks]# host 68.91.150.25
25.150.91.68.in-addr.arpa domain name pointer
adsl-68-91-150-25.dsl.okcyok.swbell.net.
(visted their sks port, identified as dannyj.dynip.com)
address@hidden sks]# host 129.128.11.77
77.11.128.129.in-addr.arpa domain name pointer pyxis.cns.ualberta.ca.
address@hidden sks]# host 66.119.199.39
39.199.119.66.in-addr.arpa domain name pointer ice.mudshark.org.
And my membership file:
ice.mudshark.org 11370
ds.carnet.hr 11370
pgpkeys.telering.at 11370
pgp.cns.ualberta.ca 11370
dannyj.dynip.com 11370
sks.keyserver.penguin.de 11370
keyserver.fabbione.net 11370
keys.se.linux.org 11370
gnupg.jccc.net 11370
keyserver.mine.nu 11370
keyserver.hadiko.de 11370
as you can see, it has not been updated recently:
-rw-r--r-- 1 sks sks 272 Jul 11 21:49 membership
So, Why are these hosts unauthorised when they are in my membership file?
--
-- Dan
_______________________________________________
Sks-devel mailing list
address@hidden
http://lists.nongnu.org/mailman/listinfo/sks-devel
--
Chris Kuethe, GCIA CISSP: Secure Systems Specialist - U of A CNS
office: 157 General Services Bldg. +1.780.492.8135
address@hidden
GDB has a 'break' feature; why doesn't it have 'fix' too?