Re: 5.1 ssh hang (i have rtfm and googled) long
Not just that... When OpenSSH runs in the jail environment, it expects resolv.conf in it's own jail... for instance, if the jail is /var/jail, then a copy of resolv.conf needs to exist /var/jail/etc/resolv.conf. Don't ask me why, but this should solve your hanging problem. Of course, the other option is to remove the priveledge seperation parameter in /etc/ssh/sshd_config, then ssh will use the standard /etc/resolv.conf Doron Shmaryahu wrote: Hi, Make sure you have valid nameservers in your /etc/resolv.conf !! That will sort your problem out. Doron Shmaryahu -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Benzi Mizrahi Sent: 23 June 2003 12:56 PM To: Kris Kennaway; jon Cc: [EMAIL PROTECTED] Subject: Re: 5.1 ssh hang (i have rtfm and googled) long áéåí ùðé, 23 áéåðé 2003, 02:15, Kris Kennaway ëúá: On Sun, Jun 22, 2003 at 12:18:07PM -0700, jon wrote: generic install of 5.1 release. sshd version OpenSSH_3.6.1p1. i have /etc/hosts set up . all systems are "RFC 1597" networks and i do not have a bind server. every connect takes over a minute to complete; using passwords. sshd needs to be able to perform forward and reverse DNS queries of the incoming host. /etc/hosts isn't enough. I don't think so... Kris ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
RE: 5.1 ssh hang (i have rtfm and googled) long
Hi, Make sure you have valid nameservers in your /etc/resolv.conf !! That will sort your problem out. Doron Shmaryahu -Original Message- From: [EMAIL PROTECTED] [mailto:[EMAIL PROTECTED] On Behalf Of Benzi Mizrahi Sent: 23 June 2003 12:56 PM To: Kris Kennaway; jon Cc: [EMAIL PROTECTED] Subject: Re: 5.1 ssh hang (i have rtfm and googled) long áéåí ùðé, 23 áéåðé 2003, 02:15, Kris Kennaway ëúá: > On Sun, Jun 22, 2003 at 12:18:07PM -0700, jon wrote: > > generic install of 5.1 release. sshd version > > OpenSSH_3.6.1p1. i have /etc/hosts set up . all > > systems are "RFC 1597" networks and i do not have a > > bind server. every connect takes over a minute to > > complete; using passwords. > > sshd needs to be able to perform forward and reverse DNS queries of > the incoming host. /etc/hosts isn't enough. > I don't think so... > Kris ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]" ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: 5.1 ssh hang (i have rtfm and googled) long
ביום שני, 23 ביוני 2003, 02:15, Kris Kennaway כתב: > On Sun, Jun 22, 2003 at 12:18:07PM -0700, jon wrote: > > generic install of 5.1 release. sshd version > > OpenSSH_3.6.1p1. i have /etc/hosts set up . all > > systems are "RFC 1597" networks and i do not have a > > bind server. every connect takes over a minute to > > complete; using passwords. > > sshd needs to be able to perform forward and reverse DNS queries of > the incoming host. /etc/hosts isn't enough. > I don't think so... > Kris ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"
Re: 5.1 ssh hang (i have rtfm and googled) long
On Sun, Jun 22, 2003 at 12:18:07PM -0700, jon wrote: > generic install of 5.1 release. sshd version > OpenSSH_3.6.1p1. i have /etc/hosts set up . all > systems are "RFC 1597" networks and i do not have a > bind server. every connect takes over a minute to > complete; using passwords. sshd needs to be able to perform forward and reverse DNS queries of the incoming host. /etc/hosts isn't enough. Kris pgp0.pgp Description: PGP signature
5.1 ssh hang (i have rtfm and googled) long
generic install of 5.1 release. sshd version OpenSSH_3.6.1p1. i have /etc/hosts set up . all systems are "RFC 1597" networks and i do not have a bind server. every connect takes over a minute to complete; using passwords. (ssh -vv host) stalls at "debug1: got SSH2_MSG_SERVICE_ACCEPT" looks up address, gets no response, times out and lets me in. ssh server is running w/ "sshd -4 -u0" man sshd "-u0" may also be used to prevent sshd from making DNS requests unless the authentication mechanism or configuration requires it. Authentication mechanisms that may require DNS include RhostsAuthentication, RhostsRSAAuthentication, HostbasedAuthentication changes to sshd_config (on server) PasswordAuthentication yes VerifyReverseMapping no no changes to ssh_config (on client) i have tried all suggestions below and a few more, that i could not find again. http://www.derkeiler.com/Mailing-Lists/FreeBSD-Security/2002-07/11027.html http://www.mail-archive.com/[EMAIL PROTECTED]/msg06861.html http://www.geocrawler.com/archives/3/151/2002/10/0/10045250/ thanks to all jon __ Do you Yahoo!? SBC Yahoo! DSL - Now only $29.95 per month! http://sbc.yahoo.com ___ [EMAIL PROTECTED] mailing list http://lists.freebsd.org/mailman/listinfo/freebsd-questions To unsubscribe, send any mail to "[EMAIL PROTECTED]"