Hello,
How can I configure openssl to not do reverse lookups on client
connections on my RHEL system running the distribution apache?
Red Hat Enterprise Linux ES release 4 (Nahant Update 6)
OpenSSL 0.9.7a Feb 19 2003
I've noticed that even with HostnameLookups set to off, connections to
port 443 trigger hostname lookups on the in-addr.arpa domain of the
client ip addresses.
The lookups occur only for ssl connections, leading me to believe it's
openssl doing the lookups (also, of course, I see lookups for ssh
connections to the box, so I figure the common element between apache
and sshd is openssl).
This is a busy webserver, and I don't see the value of these lookups, so
I'd like to reduce the overhead of doing them by disabling them, without
having to disable DNS entirely.
There is nothing I see in the distribution openssl.cnf that addresses
lookups. Is there a configuration parameter at all for this?
Thanks,
Brian
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List openssl-users@openssl.org
Automated List Manager [EMAIL PROTECTED]
