man mDNS shows examples of advertising services using the syntax:

mDNS -R “My Test” _http._tcp . 80 (and some other stuff)

And to search for a resource:

mDNS -B _http._tcp

I’ve ran a packet capture on an ibook as it bound to Active Directory (just to make sure it was doing it sensibly before we let it near the live systems) and noticed a lot of these DNS requests milliseconds after it bound.

At the time the notification was generated my box was running 10.4.2. I’ve just now updated to Security Update 2005-007 (v1.1).

Since Rogers.com’s tech support is so useless for non-windows, and the “abuse” team doesn’t return emails, I guess I won’t find out if the latest update fixed the issue or not until after I’m banned

I’m not yet clear whether the offending software is ssh (or client app) or sshd (the server app).

Their auto-generated nasty-gram included the following log snippet:

Date Time, Src, Query, Query type 2005-08-24 10:03:02.87574, 24.157.68.55, _telnet._tcp.quickbeam.rogers.com., Internet Unknow 2005-08-24 10:03:02.89364, 24.157.68.55, quickbeam.slnt.phub.net.cable.rogers.com., Internet Addr ? 2005-08-24 10:03:02.91165, 24.157.68.55, quickbeam.slnt.phub.net.cable.rogers.com., Internet Addr ? 2005-08-24 10:03:02.92965, 24.157.68.55, quickbeam.phub.net.cable.rogers.com., Internet Addr ? 2005-08-24 10:03:02.94782, 24.157.68.55, quickbeam.phub.net.cable.rogers.com., Internet Addr ?

Date Time,Dst,Query,Response 2005-08-24 10:03:2.87637,24.157.68.55,Error:,3(Name Error) 2005-08-24 10:03:2.89392,24.157.68.55,Error:,3(Name Error) 2005-08-24 10:03:2.91205,24.157.68.55,Error:,3(Name Error) 2005-08-24 10:03:2.93289,24.157.68.55,Error:,3(Name Error) 2005-08-24 10:03:2.94814,24.157.68.55,Error:,3(Name Error)

All the best, ./ddd