You're checking for spoofed addresses.. a side effect is that improperly configured hosts get blocked as well.
Quote:
|
Originally Posted by /etc/hosts.allow
# Protect against simple DNS spoofing attacks by checking that the
# forward and reverse records for the remote host match. If a mismatch
# occurs, access is denied, and any positive ident response within
# 20 seconds is logged. No protection is afforded against DNS poisoning,
# IP spoofing or more complicated attacks. Hosts with no reverse DNS
# pass this rule.
ALL : PARANOID : RFC931 20 : deny
|
So for some reason this host, an IP address of someone you've posted on a public forum.. is being caught by this rule.
FreeBSD enables this by default for some bizarre reason.. configuring a firewall and removing these
hosts.{allow,deny} files would be a better idea.
Also see
hosts_access(5) section "DETECTING ADDRESS SPOOFING ATTACKS" for more information.