Re: ssh hangs (openssh stop/start fixes problem)

From: Steven Lake (steven.lake_at_corecomm.com)
Date: 02/21/04

  • Next message: Greg Norris: "Re: RSA or DSA" 
    Date: Sat, 21 Feb 2004 13:27:40 -0500
To: "Spurgeon, John P" <john.p.spurgeon@intel.com>, <secureshell@securityfocus.com>

             I actually encountered this issue a few times on Freebsd. Turned
    out it was a DNS issue. AKA the box couldn't resolve the name of the
    machine connecting to it, or the machine it was on and thus hung. Sounds
    like you've encountered a few DNS lookup issues. Although that may not be
    the actual issue, that's usually what I've found to be at fault.

    At 10:05 AM 2/21/2004 -0800, Spurgeon, John P wrote:
    >Hi,
    >
    >I'm using openssh on Solaris 7 (Intel):
    >
    >% uname -X
    >System = SunOS
    >Release = 5.7
    >KernelID = Generic_106542-27
    >
    >% ssh -V
    >OpenSSH_3.7.1p1, SSH protocols 1.5/2.0, OpenSSL 0.9.7b 10 Apr 2003
    >
    >This morning I was trying to make a connection using ssh. The ssh
    >program would just sit there doing nothing. I tried ssh with the -v
    >option, which showed me that the program wasn't getting very far before
    >it would hang:
    >
    > % ssh -v username@hostname
    > OpenSSH_3.7.1p1, SSH protocols 1.5/2.0, OpenSSL 0.9.7b 10 Apr
    >2003
    > debug1: Reading configuration data /etc/ssh/ssh_config
    > debug1: /etc/ssh/ssh_config line 28: Deprecated option
    >"RhostsAuthentication"
    >
    >It did the same thing no matter what account I was using or what system
    >I was trying to connect to (including making a connection back to the
    >local host). In contrast, telnet worked fine. I tried sending a hangup
    >signal to the sshd process (the one with ppid=1) but that didn't work.
    >Finally, I stopped and restarted the daemon using /etc/init.d/openssh:
    >
    >/etc/init.d/openssh stop
    >/etc/init.d/openssh start
    >
    >That fixed the problem.
    >
    >I've been using openssh on our development/test servers for several
    >months. I've only run into this issue twice. But both instances occurred
    >recently within a day of building the server.
    >
    >Does anyone know what might be going on?
    >
    >John

  • Next message: Greg Norris: "Re: RSA or DSA"

    Relevant Pages

    • Re: SSH in LAN with nasty Internet connects
      ... > I'm using SSH to connect my WinXP machine to my ... > local Linux router, all within a LAN. ... > Can anyone tell me why an Internet connection is used for a LAN SSH ... I believe OpenSSH tries to do a reverse DNS lookup on the machine connecting ...
      (comp.security.ssh)
    • Re: Reverse DNS lookups
      ... > starts and the wait is so long that the application making the connection ... > windows systems timeout. ... > You pretty much have to have the reverse DNS entries in your DNS server (or ... After that, ssh, telnet, and CVS was quick. ...
      (comp.unix.solaris)
    • Re: IP Firewalling by DNS name
      ... > Yes, the connection is accepted first, because there is ... > DNS, ... > Also, SSH uses host keys for identification, so you don't ...
      (freebsd-stable)
    • Re: Urgent! New router and big disaster
      ... Les Connor [SBS Community Member - SBS MVP] ... No DNS Name Resolution If DHCP Client Service Is Not Running ... You have a full-time broadband connection. ... Next I Select a local router device with an ip address. ...
      (microsoft.public.windows.server.sbs)
    • Re: CEICW & software updates...
      ... SBS/Windows Server 2003, etc is just not quite UPNP aware the way it ... MVPs do not work for Microsoft ... I'm not getting prompted for an internet connection type. ... DNS server is installed and not disabled Call to Changing ...
      (microsoft.public.windows.server.sbs)