I had something similar last week. Suddenly, wu-ftpd takes a minute to give a prompt, all users were very disappointed due to this fact. My short investigation brought the following results:
1. I did some sniffing, and saw that this #@$%^^& ftp server goes to DNS for back resolving of clients 172.17.0.0 (similar to yours - RFC1918), even if we have records for them in /etc/hosts.
2. The query to one of blackhole servers stuck, it gives me that delay. When i try "nslookup 172.17.1.1" the reply is "can not contact servers", fanny because it works with local DNS server.
3. I added an empty reverse zone for 172.17.0.0 to our DNS server and this solved the problem.
But it never happened during last year with absolutely no changes in our network !!!
It seems to me, that the blackhole servers suffered some dramatic changes during last time.
BTW, I am very disappointed with wu-ftpd, because it is impossible to completely disable reverse DNS queries for clients. Disabling this in xinetd is not sufficient.
Best Regards,
Evgeny
==================================================
Evgeny Popov Network and Security Administrator
Phone: 972-9-9594995 [EMAIL PROTECTED]
Tecnomatix Tecnologies Ltd.
==================================================
"Unix IS user friendly, it is just selective about who his friends are." Anonymous
-----Original Message-----
From: Oleg Goldshmidt [mailto:[EMAIL PROTECTED]]
Sent: Monday, January 13, 2003 10:52 PM
To: [EMAIL PROTECTED]; [EMAIL PROTECTED]
Subject: ssh hangs for a long time
I wonder if anyone has seen the following problem and knows how to fix
it.
Trying to ssh from RH7.3 to a RH7.2 machine (with all the
errata/updates) *sometimes* (not all the time) I see the connection
hang for a long time before I get a password prompt. More
specifically (trillian is a RH7.2 machine, the client is a RH7.3
machine, with a LAN, actually a crossed ethernet cable, between them),
$ ssh -v -v oleg@trillian
OpenSSH_3.1p1, SSH protocols 1.5/2.0, OpenSSL 0x0090602f
debug1: Reading configuration data /etc/ssh/ssh_config
debug1: Applying options for *
debug1: Rhosts Authentication disabled, originating port will not be trusted.
debug1: restore_uid
debug1: ssh_connect: getuid 500 geteuid 0 anon 1
Here the connection hangs, sometimes for minutes (though not always).
debug1: Connecting to trillian [192.168.0.2] port 22.
debug1: temporarily_use_uid: 500/100 (e=0)
debug1: restore_uid
debug1: temporarily_use_uid: 500/100 (e=0)
debug1: restore_uid
debug1: Connection established.
and then everything goes as expected. The /etc/ssh/ssh_config on the
server side is the one that comes with the system, I believe. In any
case, the only uncommented stanza there is
Host *
ForwardX11 yes
Has anyone got any ideas?
Thanks,
--
Oleg Goldshmidt | [EMAIL PROTECTED]
=================================================================
To unsubscribe, send mail to [EMAIL PROTECTED] with
the word "unsubscribe" in the message body, e.g., run the command
echo unsubscribe | mail [EMAIL PROTECTED]
************************************************************************************************** ** eSafe-IL scanned this outgoing email for viruses, vandals and malicious content ** **************************************************************************************************
