Leo,
Put an entry in your /etc/hosts pointing to that ip address you are connecting from, to reduce that 5 seconds to zero. I believe, due to the nature of ssh that the default behaviour is to always check "at least" the resolvable (PTR) dns name of the machine who is initiating a ssh session to the server and that resolution, can't be disabled.
Leonardo Lagos wrote:
Hi,
I have received 3 machines to admin, with ssh installed (not openssh from sunfreeware, but another ssh):
guarionex@/> pkginfo -i | grep -i ssh
utility SSHssh2 SSH secure shell 3.2.0
guarionex@/>
Everytime I want to connect, the daemon tries to resolve my ip address using DNS lookups. These machines are servers with dns disabled in nsswitch.conf (hosts: files), but the daemon is trying all the time these lookups, and causing delays in the client connections.
Dec 6 09:32:40 guarionex sshd2[11015]: [ID 702911 auth.info] connection from "192.168.151.7" Dec 6 09:32:40 guarionex sshd2[12187]: [ID 702911 auth.warning] WARNING: DNS lookup failed for "192.168.151.7". Dec 6 09:32:45 guarionex sshd2[12187]: [ID 702911 auth.notice] User root's local password accepted. Dec 6 09:32:45 guarionex sshd2[12187]: [ID 702911 auth.notice] Password authentication for user root accepted.
As you can see, there are 5 seconds from the time I give the ssh connect command until I receive the "password" prompt.
How can I disable this feature of ssh? I have looked under /etc/ssh2/ssh2_config but can't find any DNS option there.
Thanks,
Leo
_______________________________________________ Solaris-Users mailing list [EMAIL PROTECTED] http://www.filibeto.org/mailman/listinfo/solaris-users
_______________________________________________ Solaris-Users mailing list [EMAIL PROTECTED] http://www.filibeto.org/mailman/listinfo/solaris-users
