sshd waiting 5 seconds between make fork and establish connection



Hallo,

I have a extraordinary problem with one server - all other (and I have a
lot) works fine.

The problem best seen in log-file:

Mar 18 10:29:21 acadfs1 sshd[26793]: debug1: Forked child 26875.
Mar 18 10:29:21 acadfs1 sshd[26793]: debug3: send_rexec_state: entering
fd = 9 config len 675
Mar 18 10:29:21 acadfs1 sshd[26793]: debug3: ssh_msg_send: type 0
Mar 18 10:29:21 acadfs1 sshd[26793]: debug3: send_rexec_state: done
Mar 18 10:29:21 acadfs1 sshd[26875]: debug1: rexec start in 6 out 6
newsock 6 pipe 8 sock 9
Mar 18 10:29:21 acadfs1 sshd[26875]: debug1: inetd sockets after
dupping: 3, 3
Mar 18 10:29:26 acadfs1 sshd[26875]: Connection from A.B.C.D port 44376
# A.B.C.D is in verity a real IP
Mar 18 10:29:26 acadfs1 sshd[26875]: debug1: Client protocol version
2.0; client software version OpenSSH_5.1p1 Debian-5

The sshd was forked at 10:29:21 but connection bind at 10:29:26. On
client-side the break is before line

debug1: Remote protocol version 2.0, remote software version
OpenSSH_5.1p1 Debian-5

At first I meant, that is a question of reverse lookup, but isn't it.
tcpdump show that many other trafic passed on netcard in this 5 seconds.
Other protocolls (smb, https, http,...) connect in milliseconds. After
esatblish the ssh-connection the transfer ist fast very well (100 MB in
32 seconds). Connections to localhost haven't a break.

My sshd_config:

Port 22
Protocol 2
ListenAddress A.B.C.D
ListenAddress A.B.E.F
ListenAddress 127.0.0.1
HostKey /etc/ssh/ssh_host_key
HostKey /etc/ssh/ssh_host_rsa_key
HostKey /etc/ssh/ssh_host_dsa_key
ServerKeyBits 768
LoginGraceTime 600
KeyRegenerationInterval 3600
PermitRootLogin no
IgnoreRhosts yes
StrictModes yes
X11Forwarding yes
X11DisplayOffset 10
PrintMotd no
PrintLastLog no
TCPKeepAlive yes
UseDNS no
SyslogFacility AUTH
LogLevel INFO
RhostsRSAAuthentication no
HostbasedAuthentication no
RSAAuthentication yes
PasswordAuthentication yes
PermitEmptyPasswords no
Subsystem sftp /usr/lib/openssh/sftp-server
UsePAM yes

Has anyone a idea to solve this problem?

With regards
Andreas Matthus

Attachment: smime.p7s
Description: S/MIME Cryptographic Signature



Relevant Pages

  • Simple Problem; Need Help Debugging
    ... my sshd server freezes up. ... # HostKey for protocol version 1 ... # Kerberos options ...
    (SSH)
  • No username prompt SSHD
    ... I have sshd set up on my server, and all I want is just username/password ... (with PermitRootLogin yes, if set to no it will not work - and I don't want ... # HostKey for protocol version 1 ... # Kerberos options ...
    (SSH)
  • Port Assignment- OT in a Small Way
    ... 5:RJE - Remote Job Entry ... 18:MSP - Message Send Protocol ... server, Traitor 21, WebEx, WinCrash, NerTe, ... 22:SSH - SSH Remote Login Protocol, RAT: Shaft ...
    (comp.security.misc)
  • Port Assignment- OT in a Small Way
    ... 5:RJE - Remote Job Entry ... 18:MSP - Message Send Protocol ... server, Traitor 21, WebEx, WinCrash, NerTe, ... 22:SSH - SSH Remote Login Protocol, RAT: Shaft ...
    (comp.security.firewalls)
  • Port Assignment- OT in a Small Way
    ... 5:RJE - Remote Job Entry ... 18:MSP - Message Send Protocol ... server, Traitor 21, WebEx, WinCrash, NerTe, ... 22:SSH - SSH Remote Login Protocol, RAT: Shaft ...
    (alt.computer.security)