From owner-freebsd-security Tue Mar 27 11:19:10 2001 Delivered-To: freebsd-security@freebsd.org Received: from critter.freebsd.dk (critter.freebsd.dk [212.242.86.163]) by hub.freebsd.org (Postfix) with ESMTP id 3D38E37B71A for ; Tue, 27 Mar 2001 11:19:08 -0800 (PST) (envelope-from phk@critter.freebsd.dk) Received: from critter (localhost [127.0.0.1]) by critter.freebsd.dk (8.11.3/8.11.3) with ESMTP id f2RJIi383209; Tue, 27 Mar 2001 21:18:44 +0200 (CEST) (envelope-from phk@critter.freebsd.dk) To: Garance A Drosihn Cc: George.Giles@mcmail.vanderbilt.edu, security@FreeBSD.ORG Subject: Re: SSH login delay In-Reply-To: Your message of "Tue, 27 Mar 2001 14:13:46 CDT." Date: Tue, 27 Mar 2001 21:18:44 +0200 Message-ID: <83207.985720724@critter> From: Poul-Henning Kamp Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org In message , Garance A Drosihn writes: >At 8:03 AM -0600 3/27/01, George.Giles@mcmail.vanderbilt.edu wrote: >>Does any one know what causes the long delay between entering >>the password to ssh and the actual logging in of the shell prompt ? >> >>Sometimes it takes more than a minute when I know it is not >>network speed ? > >When I've seen this, it is sometimes caused by problems in >reverse-DNS resolution. If you're going from machine A to >machine B and it is slow, then once you are on machine B >try to DNS lookups on the IP address of machine A. It can also be caused by lack of randomness in which case sshd seems to fall back to a lot of gettimeofday() calls. -- Poul-Henning Kamp | UNIX since Zilog Zeus 3.20 phk@FreeBSD.ORG | TCP/IP since RFC 956 FreeBSD committer | BSD since 4.3-tahoe Never attribute to malice what can adequately be explained by incompetence. To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message