krb5-realm again ?

From: Hannes Fremann (hg_at_automatx.de)
Date: 12/14/03

Next message: Per Hedeland: "Re: X11 forwarding in OpenSSH question"

Previous message: Steffen Leich: "Announcement: SecPanel 0.4.2 (SSH-GUI for X)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: 14 Dec 2003 08:04:02 -0800

Hi there,

to upgrade an old version of sshd i downloaded, compiled and installed
openssh-3.7-p1 on the target system (linux). The sshd seems to work
but it sends DNS requests to get TXT information for kerberos-like DNS
entries:

automat named[137]: XX
/192.168.228.91/krb5-realm.automat.automatx.de/TXT
automat named[137]: XX
/192.168.228.91/_kerberos.automat.automatx.de/TXT
automat named[137]: XX /192.168.228.91/krb5-realm.automatx.de/TXT
automat named[137]: XX /192.168.228.91/_kerberos.automatx.de/TXT

This seems to be a very old problem but i've no idea howto get sshd
working without sending these requests.

My last configure run was:

475 ./configure --prefix=/usr/local/packages/openssh-3.7p1
--with-ssl-dir=/usr/local/packages/openssl --without-dns
--without-kerberos5

i already played around with the settings in sshd_config, especially
with the useDNS option but without success.

Any help is appreciated.

Next message: Per Hedeland: "Re: X11 forwarding in OpenSSH question"

Previous message: Steffen Leich: "Announcement: SecPanel 0.4.2 (SSH-GUI for X)"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages

Re: ssh only with internet connection?
... > I have experienced quite a strange behavior of sshd that I'd like to fix ... > to the Internet via ADSL. ... Box A is configured as a DNS server, ... > connection is down, ssh stops working. ...
(comp.unix.bsd.freebsd.misc)
Re: OpenSSH and hostname resolution issues on Solaris
... if you have DNS configured via ... >> Worst case the machine never gets past starting sshd during ... PARANOID in hosts.deny but we haven't used the ...
(comp.security.ssh)
Re: OpenSSH and hostname resolution issues on Solaris
... if you have DNS configured via ... > Worst case the machine never gets past starting sshd during ... > The OpenSSH in question is anything from ~2.9 to 3.5p1, ...
(comp.security.ssh)
Re: Slow NAT firewall
... option in the sshd startup and the problem went away. ... the authentication takes a very long time. ... Sounds a lot like a DNS timeout. ... To unsubscribe, ...
(freebsd-questions)
Re: SSH login takes very long time...sometimes
... sshd and friends shouldn't be affected. ... the reverse lookup failure time with one unreachable DNS: ... seconds for gethostbyaddr() to fail, after two DNS requests. ...
(freebsd-stable)