Quote:
Originally Posted by
shitson
Is there a MOTD that appears when you login?
try doing a ssh -v or ssh -vv or ssh -vvv to view the 3 levels of debugging to determine where the system is getting stuck at.
Also what specs is your system running?
Sorry for the delay everyone, I've been busy the last week. There is a very stern motd warning me that I will go to jail if I push the wrong keys :-) It doesn't appear until after the delay. When I debug with all 3 levels of debugging it pauses in pretty much the same 2 spots. I'm sure there's some information I can't print in all that so I'll have to post just the messages where it pauses:
debug2: we did not send a packet, disable method
debug3: authmethod_lookup keyboard-interactive
debug3: remaining preferred: password
debug3: authmethod_is_enabled keyboard-interactive
debug1: Next authentication method: keyboard-interactive
debug2: userauth_kbdint
debug2: we sent a keyboard-interactive packet, wait for reply
...... 20 second pause here
debug1: channel 0: new [client-session]
debug3: ssh_session2_open: channel_new: 0
debug2: channel 0: send open
debug1: Entering interactive session.
...... 20 second pause here
Does that help any?
With regards to the system specs how would I find out?
---------- Post updated at 03:57 PM ---------- Previous update was at 03:55 PM ----------
Quote:
Originally Posted by
SmartAntz
This might be the the server DNS setting problem. Assuming it can't reach a dns server, suggest is use your previous method to solve it
We did that and it worked, the problem is that I am natted somewhere between here and the server and although my IP does not change the nat IP does. So the fix only lasted a day or so.
---------- Post updated at 04:01 PM ---------- Previous update was at 03:57 PM ----------
Quote:
Originally Posted by
frank_rizzo
if the server cannot reach any DNS server then disable the use of DNS - /etc/nsswitch.conf
We tried this and it halved the delay from 80 seconds down to 40. Does it still look in /etc/resolv.conf also? My thinking was there was 2 DNS servers in nsswitch.conf and 2 in resolv.conf so we have halved the number of lookups. Does that sound reasonable?
---------- Post updated at 04:03 PM ---------- Previous update was at 04:01 PM ----------
Quote:
Originally Posted by
kduffin
My first guess would have been the lookup; but a few useful steps in troubleshooting:
Startup another instance of sshd in debug mode. As root:
# ./sshd -ddd -p 922
In another window, start a snoop and collect information for Wireshark. You may not need it in the end, but better to collect as much info as possible:
# snoop -s 1500 -o /tmp/sshd.log port 922 (may have to use -d if using a particular interface)
Now you'll want to make 2 connections. First, connect from the windows host, watch for errors or where it "blocks". You can then connect locally from the host and look at the difference. Good luck,
Keith Duffin
Thanks for the reply Keith. Unfortunately I wouldn't be able to get root access
