How to disable odd kerberos nslookups in sshd
Jordan Krushen
following name lookups logged on my DNS cache:
2000-12-03 17:34:54.678914500 query 412 d812631e:0779:86e4 1
pinky.van.data-fortress.com.
2000-12-03 17:34:54.687765500 query 413 d8126324:060b:ed81 12
30.99.18.216.in-addr.arpa.
2000-12-03 17:34:54.725595500 query 414 d8126324:060c:ed82 12
30.99.18.216.in-addr.arpa.
2000-12-03 17:34:54.726962500 query 415 d8126324:060d:ed83 1
proxy.office.van.data-fortress.com.
2000-12-03 17:34:58.416926500 query 416 d8126324:060e:ed84 16
krb5-realm.pinky.van.data-fortress.com.
2000-12-03 17:34:58.417820500 query 417 d8126324:060f:ed85 16
_kerberos.pinky.van.data-fortress.com.
2000-12-03 17:34:58.418515500 query 418 d8126324:0610:ed86 16
krb5-realm.van.data-fortress.com.
2000-12-03 17:34:58.418870500 query 419 d8126324:0611:ed87 16
_kerberos.van.data-fortress.com.
2000-12-03 17:34:58.419483500 query 420 d8126324:0612:ed88 16
krb5-realm.data-fortress.com.
2000-12-03 17:34:58.419825500 query 421 d8126324:0613:ed89 16
_kerberos.data-fortress.com.
2000-12-03 17:34:58.420398500 query 422 d8126324:0614:ed8a 16
krb5-realm.com.
2000-12-03 17:34:58.422673500 query 423 d8126324:0615:ed8b 16 _kerberos.com.
2000-12-03 17:34:58.423547500 query 424 d8126324:0616:ed8c 33
_kerberos._udp.van.data-fortress.com.
2000-12-03 17:34:58.423933500 query 425 d8126324:0617:ed8d 33
kerberos.udp.van.data-fortress.com.
2000-12-03 17:34:58.424574500 query 426 d8126324:0618:ed8e 33
_kerberos._tcp.van.data-fortress.com.
2000-12-03 17:34:58.424931500 query 427 d8126324:0619:ed8f 33
kerberos.tcp.van.data-fortress.com.
2000-12-03 17:34:58.425558500 query 428 d8126324:061a:ed90 33
_kerberos._http.van.data-fortress.com.
2000-12-03 17:34:58.426138500 query 429 d8126324:061b:ed91 33
kerberos.http.van.data-fortress.com.
2000-12-03 17:34:58.426839500 query 430 d8126324:061c:ed92 1
kerberos.van.data-fortress.com.
2000-12-03 17:34:58.427490500 query 431 d8126324:061d:ed93 1
kerberos.van.data-fortress.com.van.data-fortress.com.
2000-12-03 17:34:58.428258500 query 432 d8126324:061e:ed94 1
kerberos.van.data-fortress.com.
2000-12-03 17:34:58.428773500 query 433 d8126324:061f:ed95 1
kerberos.van.data-fortress.com.van.data-fortress.com.
2000-12-03 17:34:58.429466500 query 434 d8126324:0620:ed96 1
kerberos.van.data-fortress.com.
2000-12-03 17:34:58.434909500 query 435 d8126324:0621:ed97 1
kerberos.van.data-fortress.com.van.data-fortress.com.
2000-12-03 17:34:58.441609500 query 436 d8126324:0622:ed98 12
30.99.18.216.in-addr.arpa.
2000-12-03 17:34:58.443274500 query 437 d8126324:0623:ed99 1
proxy.office.van.data-fortress.com.
2000-12-03 17:34:58.445941500 query 438 d8126324:0624:ed9a 1
proxy.office.van.data-fortress.com.
The first four are OK, as are the last three -- they seem to just be
paranoid resolving, but the kerberos lookups are annoying, at best.
I have the following lines in sshd_config:
# To change Kerberos options
KerberosAuthentication no
#KerberosOrLocalPasswd yes
#AFSTokenPassing no
KerberosTicketCleanup no
These are the only ones I can see that relate to kerberos, but even with the
authentication shut off, it still does these bizarre lookups.
Can anyone tell me how to shut them off?
J.