> From: "Chris Garrigues" <cwg-oldap-sw@DeepEddy.Com>
> Date: Thu, 16 Mar 2000 13:05:21 -0600
>
> I have certain systems that cause the server to go catatonic if they send a
> request.
Well, after digging into the openldap code some, it appears that the fact that
I'm running freeswan is a redherring. the real thing that certain systems have
in common is not having a reverse entry in the DNS. slapd totally and utterly
hangs if you hit port 389 from a host that doesn't have a reverse entry!
I'm going to rebuild my RPM with rlookups disabled, but even when they're
enabled, catatonia seems like a rather severe reaction. It would be better to
log the fact that there is no reverse lookup and then reject the connection.
Chris
--
Chris Garrigues virCIO
http://www.DeepEddy.Com/~cwg/ http://www.virCIO.Com
+1 512 432 4046 +1 512 374 0500
4314 Avenue C
O- Austin, TX 78751-3709
My email address is an experiment in SPAM elimination. For an
explanation of what we're doing, see http://www.DeepEddy.Com/tms.html
Nobody ever got fired for buying Microsoft,
but they could get fired for relying on Microsoft.
Attachment:
pgpNEB2r9CNNO.pgp
Description: PGP signature