From kieber@sax.sax.de  Tue Aug 22 13:53:26 1995
Received: from irz301.inf.tu-dresden.de (irz301.inf.tu-dresden.de [141.76.1.11])
          by freefall.FreeBSD.org (8.6.11/8.6.6) with SMTP id NAA16943
          for <FreeBSD-gnats-submit@freebsd.org>; Tue, 22 Aug 1995 13:53:20 -0700
Received: from sax.sax.de by irz301.inf.tu-dresden.de with SMTP
	(5.67b+/DEC-Ultrix/4.3) id AA24745; Tue, 22 Aug 1995 22:53:17 +0200
Received: by sax.sax.de (8.6.11/8.6.12-s1)
	id WAA09966; Tue, 22 Aug 1995 22:53:16 +0200
Message-Id: <199508222053.WAA09966@sax.sax.de>
Date: Tue, 22 Aug 1995 22:53:16 +0200
From: kieber@sax.sax.de
Reply-To: kieber@sax.sax.de
To: FreeBSD-gnats-submit@freebsd.org
Subject: .rhosts weirdness
X-Send-Pr-Version: 3.2

>Number:         706
>Category:       bin
>Synopsis:       increased root DNS traffic and long latencies for r-commands
>Confidential:   no
>Severity:       serious
>Priority:       high
>Responsible:    jmg
>State:          closed
>Quarter:
>Keywords:
>Date-Required:
>Class:          sw-bug
>Submitter-Id:   current-users
>Arrival-Date:   Tue Aug 22 14:00:02 PDT 1995
>Closed-Date:    Fri Sep 19 02:36:37 PDT 1997
>Last-Modified:  Fri Sep 19 02:36:55 PDT 1997
>Originator:     Ulf Kieber
>Release:        FreeBSD 2.0-BUILT-19950603 i386
>Organization:
SaxNet e. V.
>Environment:

FreeBSD sax.sax.de 2.0.5-RELEASE FreeBSD 2.0.5-RELEASE #1: Mon Aug 14 21:18:11 MET DST 1995     root@sax.sax.de:/usr/src/sys/compile/SAX  i386

>Description:

If I'm trying to rsh from a host, that's located almost at the end of
my .rhosts to the machine named in >Environment it takes an eternity
to complete.

Following is a snippet of my .rhosts (which in reality is much
longer):

irz101 uk1
irz101.inf.tu-dresden.de uk1
141.76.2.1 uk1
irz102 uk1
irz102.inf.tu-dresden.de uk1
141.76.2.2 uk1
irz103 uk1
irz103.inf.tu-dresden.de uk1
141.76.2.3 uk1

tcpdump on the FreeBSD machine gives me:

sax.sax.de /root# tcpdump -i ed0 -nt ip src host 193.175.26.33 and ip dst host 141.76.1.9 and dst port 53
tcpdump: listening on ed0
 ...
193.175.26.33.1568 > 141.76.1.9.53: 49+ (42)
193.175.26.33.1569 > 141.76.1.9.53: 50+ (31)
193.175.26.33.1570 > 141.76.1.9.53: 51+ A? irz101. (24)
193.175.26.33.1572 > 141.76.1.9.53: 52+ (42)
193.175.26.33.1574 > 141.76.1.9.53: 53+ (31)
193.175.26.33.1576 > 141.76.1.9.53: 54+ A? irz102. (24)
193.175.26.33.1578 > 141.76.1.9.53: 55+ (42)
193.175.26.33.1580 > 141.76.1.9.53: 56+ (31)
193.175.26.33.1581 > 141.76.1.9.53: 57+ A? irz103. (24)
193.175.26.33.1582 > 141.76.1.9.53: 58+ (42)
193.175.26.33.1583 > 141.76.1.9.53: 59+ (31)
 ...

The entries for the unqualified hostnames

irz101 uk1
irz102 uk1
irz103 uk1

obviously get tries as _root_ level domains, which tremendously
increases the DNS traffic to the root name servers.

>How-To-Repeat:

Create a long .rhosts which many unqualified hostnames in it on a
FreeBSD 2.0.5R machine and try rsh-ing to it from a host located neer
the end of the .rhosts.

>Fix:
	
Not yet.  Gotta walk throu the code.
>Release-Note:
>Audit-Trail:
State-Changed-From-To: open->feedback 
State-Changed-By: scrappy 
State-Changed-When: Mon Oct 21 23:11:23 PDT 1996 
State-Changed-Why:  

Dust off the cobwebs - Confirm Status 
State-Changed-From-To: feedback->open 
State-Changed-By: scrappy 
State-Changed-When: Tue Oct 22 14:13:10 PDT 1996 
State-Changed-Why:  

Status confirmed. :-)  It's still present.  The PR is sitting in my 
inbox since the day Ulf has been reporting it... but i've never got 
around to really analyze and fix the problem. 

-- 
cheers, J"org 


From: John-Mark Gurney <jmg@nike.efn.org>
To: kieber@sax.sax.de, freebsd-gnats-submit@freefall.FreeBSD.org
Cc:  Subject: bin/706 .rhosts and unqualified hostnames
Date: Mon, 10 Feb 1997 21:31:45 -0800 (PST)

 ok...  this problem still exists... but isn't it A Bad Thing (tm) to be
 trusting "outside" dns servers for those unqualified hostnames? because
 the root server could possibly be compromised or redirected to someone
 else's machine?
 
 should we possibly add a comment to hosts.equiv(5) that you shouldn't use
 unqualified dns entries for hostname?  it's fine if you list the
 unqualified entries in something like /etc/hosts and put it to check hosts
 before going to dns...
 
 comments?
 
 John-Mark
 
 gurney_j@efn.org
 http://resnet.uoregon.edu/~gurney_j/
 Modem/FAX: (541) 683-6954   (FreeBSD Box)
 
 Live in Peace, destroy Micro$oft, support free software, run FreeBSD (unix)
 
Responsible-Changed-From-To: freebsd-bugs->jmg 
Responsible-Changed-By: mpp 
Responsible-Changed-When: Fri Feb 21 12:46:10 PST 1997 
Responsible-Changed-Why:  
John-Mark said he would do the followup on this. 
State-Changed-From-To: open->closed 
State-Changed-By: phk 
State-Changed-When: Fri Sep 19 02:36:37 PDT 1997 
State-Changed-Why:  
timed out 
>Unformatted:
