ssh connection incredibly low

From: Sabrina Lautier (slautier_at_amadeus.net)
Date: 12/29/04

  • Next message: Sabrina Lautier: "ssh connection incredibly low" 
    To: secureshell@securityfocus.com
Date: Wed, 29 Dec 2004 15:33:40 +0100

    Hi,

    I compiled openssh exactly the same way on 2 identical HP-UX 11.11 servers
    (same patches level, same hardware config, etc.) and for an unknown reason
    the ssh connection to one (server1) is very quick but very slow to the
    other one (server2)...

    I traced the connection to both of them, and the second one get stuck at
    this level:
    debug1: identity file /home/user/.ssh/id_dsa type -1

    Note1: the user home dir is NFS mounted on both machines => same home dir
    from both servers.
    Note2: the server load is about the same on both machines.

    $ ssh -vv server2
    OpenSSH_3.8.1p1, OpenSSL 0.9.7d 17 Mar 2004
    debug2: ssh_connect: needpriv 0
    debug1: Connecting to ncegc201 [172.16.133.12] port 22.
    debug1: Connection established.
    debug1: identity file /home/user/.ssh/identity type -1
    debug2: key_type_from_name: unknown key type '-----BEGIN'
    debug2: key_type_from_name: unknown key type '-----END'
    debug1: identity file /home/user/.ssh/id_rsa type 1
    debug1: identity file /home/user/.ssh/id_dsa type -1
    !!! Long time period (around 2mn) !!!
    debug1: Remote protocol version 1.99, remote software version OpenSSH_3.9p1
    debug1: match: OpenSSH_3.9p1 pat OpenSSH*
    ...
    debug2: channel 0: open confirm rwindow 0 rmax 32768
    debug2: channel 0: rcvd adjust 131072
    Last login: Fri Dec 17 14:11:34 2004 from serverx

    Could you please give me some clues ?

    Rgds,
    Sabrina

  • Next message: Sabrina Lautier: "ssh connection incredibly low"

    Relevant Pages

    • Update: Unable to login without password using ssh
      ... The permission on the .ssh directory was following ... I have other servers which are working. ... debug1: Rhosts Authentication disabled, originating port will not be trusted. ... debug1: sent kexinit: none ...
      (SunManagers)
    • Analysis of SSH crc32 compensation attack detector exploit
      ... Analysis of SSH crc32 compensation attack detector exploit ... detector vulnerability to remotely compromise a Red Hat Linux ... Active Internet connections (servers and established) ...
      (Incidents)
    • Re: delay after sshing into a server
      ... those servers don't have this problem. ... try ssh -vv user@wherever to see where the hang is happening. ... debug1: Connecting to aa port 22. ... I then restarted network just to make sure the hosts file ...
      (RedHat)
    • Re: Agent Forwarding Question for the list
      ... I provided a suggestion (invoking ssh with -vvv) as to how to further troubleshoot the problem. ... I was determined to ask the experts in case it was a common mistake or something that simply is not possible under openssh. ... Say in the ideal setup for development servers I'd have a cronuser, scriptuser, monitoruser, cvsuser, and root all configured with my public key and that I could jump in and out of each not only from my own Linux Desktop, but through each user to each user on other servers in the development chain. ... After reading all the documentation and FAQs I could find, I had assumed ssh-agent on the desktop and agent forwarding on the servers would be sufficient, but something is blocking the forwarding, or I'm way off and this isn't how it's meant to work. ...
      (SSH)
    • Re: create a SSH connection without password WITH EXPECT
      ... connection by ssh on a distant server but it doesnt work. ... from every servers on a single syslog daemon. ... set Host [lindex $argv 0] ...
      (comp.lang.tcl)