[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

security hole? server masquerade

To: Hobbit Group <hobbit (at) hswn.dk>
Subject: security hole? server masquerade
From: ye-fee liang <yf.liang (at) yahoo.ca>
Date: Thu, 29 Nov 2007 17:05:44 -0500 (EST)
Domainkey-signature: a=rsa-sha1; q=dns; c=nofws; s=s1024; d=yahoo.ca; h=X-YMail-OSG:Received:Date:From:Subject:To:MIME-Version:Content-Type:Content-Transfer-Encoding:Message-ID; b=I4XaCYoSuiyRcfPPYzv4e8yKSVTcM8jv0qfhyoqE2yhx/lCDXBrfKe7arZXMsIuLEBgTWJ0OqDWtEjbn39aDQdPJCraZ2vWiFOJ+ixoyhHhJeoJqlVIt24k+uYYz/8eOEWXXDXhfYq7NofPXoMHk3SFFCMGh10Xj1xdm7BRzZGs=;

We have 2 servers:

1.2.3.4   servera
  4.5.6.8   serverb
   
  During DR(discovery test), we changed the local name of serverb to servera,
  to perform test to see that servera applications have been recovered.
  
So, externally both return pings to their original name.  However, when 
logging into serverb, the uname -a returns servera.

The change was done by changing /etc/hosts and uname.
4.5.6.8  serverb  servera
   
  When the hobbit client is running on serverb, all processes have servera 
  in them.  Hobbit server starts to report serverb status as servera !!

Doesn't the hobbit server check that the ip of the reporting server (serverb)
and reject it, since it does not match the ip address of servera?
   
  
 

       
---------------------------------
Be smarter than spam. See how smart SpamGuard is at giving junk email the boot with the All-new Yahoo! Mail

Follow-Ups:
- Re: [hobbit] security hole? server masquerade
  - From: Henrik Stoerner
- Re: [hobbit] security hole? server masquerade
  - From: Larry Barber

Prev by Date: Re: [hobbit] strange graph behavior - random machines & graphs
Next by Date: RE: [hobbit] strange graph behavior - random machines & graphs
Previous by thread: view question
Next by thread: Re: [hobbit] security hole? server masquerade
Index(es):
- Date
- Thread