From 47748c8fd834b0d3fc77571a232859b3ff81b9cc Mon Sep 17 00:00:00 2001
From: Eric Light <eric@ericlight.com>
Date: Fri, 20 May 2016 05:58:52 +1200
Subject: [PATCH] UseDNS = No is a safer configuration (#204)

See Issue #197.

References:
 - https://bugs.launchpad.net/ubuntu/+source/openssh/+bug/424371/comments/11
 - https://unix.stackexchange.com/questions/56941/what-is-the-point-of-sshd-usedns-option
 - https://security.googleblog.com/2016/02/cve-2015-7547-glibc-getaddrinfo-stack.html
---
 include/tests_ssh | 2 +-
 1 file changed, 1 insertion(+), 1 deletion(-)

diff --git a/include/tests_ssh b/include/tests_ssh
index 774b6074..a78a44ef 100644
--- a/include/tests_ssh
+++ b/include/tests_ssh
@@ -126,7 +126,7 @@
                 Protocol:2,,1:=\
                 StrictModes:YES,,NO:=\
                 TCPKeepAlive:NO,,YES:=\
-                UseDNS:YES,,NO:=\
+                UseDNS:NO,,YES:=\
                 UsePrivilegeSeparation:SANDBOX,YES,NO:=\
                 VerifyReverseMapping:YES,,NO:=\
                 X11Forwarding:NO,,YES:="