Path: utzoo!utgpu!news-server.csri.toronto.edu!cs.utexas.edu!sdd.hp.com!decwrl!ucbvax!SCI.CCNY.CUNY.EDU!dan
From: dan@SCI.CCNY.CUNY.EDU (Dan Schlitt)
Newsgroups: comp.protocols.tcp-ip.domains
Subject: Re: no inverse mappings
Message-ID: <9008131945.AA03144@sci.ccny.cuny.edu>
Date: 13 Aug 90 19:45:25 GMT
Sender: daemon@ucbvax.BERKELEY.EDU
Distribution: inet
Organization: The Internet
Lines: 15


	Bob Sutterfield writes,
	
	I'd rather see a few sites with misconfigured inverse mappings
	becoming temporarily inconvenienced, than the entire world thrown into
	a tailspin because some yahoo laid UUNET low via a security hole that
	could have been avoided by disallowing non-inverse-mapped access.
	
Amen.  The "liberal ..... conservative ..." bit quoted by others
applies to datagrams and messages.  Certainly no one intends for it to
apply to authentication.  Otherwise we would see telnets that do
soundex matching of loginnames and hosts treated as trusted by default
by rlogin.

/dan