From owner-freebsd-current Fri Jan 3 8:56:16 2003 Delivered-To: freebsd-current@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 6159737B405 for ; Fri, 3 Jan 2003 08:56:14 -0800 (PST) Received: from mail.tcoip.com.br (erato.tco.net.br [200.220.254.10]) by mx1.FreeBSD.org (Postfix) with ESMTP id 99F5743EC2 for ; Fri, 3 Jan 2003 08:56:10 -0800 (PST) (envelope-from dcs@tcoip.com.br) Received: from tcoip.com.br ([10.0.2.6]) by mail.tcoip.com.br (8.11.6/8.11.6) with ESMTP id h03GsuV05436; Fri, 3 Jan 2003 14:54:56 -0200 Message-ID: <3E15C061.8010609@tcoip.com.br> Date: Fri, 03 Jan 2003 14:54:57 -0200 From: "Daniel C. Sobral" User-Agent: Mozilla/5.0 (Windows; U; Windows NT 5.1; en-US; rv:1.2b) Gecko/20021016 X-Accept-Language: en-us, en, pt-br, ja MIME-Version: 1.0 To: ryan beasley , current@freebsd.org Subject: Re: sshd login References: <3E15917A.9090609@tcoip.com.br> <3E1596E1.7070504@tcoip.com.br> <20030103150108.GA62535@goddamnbastard.org> In-Reply-To: <3E15917A.9090609@tcoip.com.br> Content-Type: text/plain; charset=ISO-8859-1; format=flowed Content-Transfer-Encoding: quoted-printable Sender: owner-freebsd-current@FreeBSD.ORG Precedence: bulk List-ID: List-Archive: (Web Archive) List-Help: (List Instructions) List-Subscribe: List-Unsubscribe: X-Loop: FreeBSD.ORG ryan beasley wrote: > On Fri, Jan 03, 2003 at 11:57:53AM -0200, Daniel C. Sobral wrote: > > >Daniel C. Sobral wrote: > > > > > >>Starting around the end of the year, sshd is taking a LONG time to > >>proceed, just a bit after the few first packets. > > > >Ok, I found the query packets, on the loopback: > >17.199.31.172.in-addr.arpa. (44) > > *snip* > > >Only there is no reason in hell for it to query 127.0.0.1. My > >configuration files: > > *snip* > > >Anyone has suggestions? > > > Are you using privilege separation? Have you always used privilege= > separation? If the answer to the first is "yes" and the second "no= ", > then I'm betting that it's the forked pre-auth process that's chroo= t'd > to /var/empty (or whatever you set the chroot dir to). You'd need = to > stick a hosts/resolv.conf in the chroot environment. (e.g., > /var/empty/etc/resolv.conf) Alas, that *did* work. My first attempt (replying to another message)=20 was done with wrong permissions. Question... it did not have this trouble before Dec 13, but Dec 30 it=20 had (no worlds in between). The sshd_config I use is the standard one.=20 So... why? --=20 Daniel C. Sobral Ger=EAncia de Opera=E7=F5es Divis=E3o de Comunica=E7=E3o de Dados Coordena=E7=E3o de Seguran=E7a TCO Fones: 55-61-313-7654/Cel: 55-61-9618-0904 E-mail: Daniel.Capo@tco.net.br Daniel.Sobral@tcoip.com.br dcs@tcoip.com.br To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message