Actually I should have looked first, we are running sshd directly and not
from inet (never assume!). Here is a -v output, wait 1 is the longest but
does not always happen, wait 2 happens all the time. If I keep tying it goes
reasonable fast but if you don't try for while it gets slow again.
[11:52:28]$ssh -v host
SSH Version 1.2.27 [sparc-sun-solaris2.6], protocol version 1.5.
Standard version. Does not use RSAREF.
host: Reading configuration data /etc/ssh_config
host: ssh_connect: getuid 1023 geteuid 1023 anon 1
-- wait 1 ---
host: Connecting to host [10.10.10.10] port 22.
host: Connection established.
-- wait 2 ---
host: Remote protocol version 1.5, remote software version 1.2.27
host: Waiting for server public key.
host: Received server public key (768 bits) and host key (1024 bits).
host: Host 'host' is known and matches the host key.
host: Initializing random; seed file /export/home/xxx/.ssh/random_seed
host: Encryption type: idea
host: Sent encrypted session key.
host: Installing crc compensation attack detector.
host: Received encrypted confirmation.
host: No agent.
host: Trying RSA authentication with key 'xxx@host'
host: Received RSA challenge from server.
Enter passphrase for RSA key 'xxx@host':
-----Original Message-----
From: Carl J. Nobile [mailto:[EMAIL PROTECTED]]
Sent: Tuesday, April 03, 2001 11:03 AM
To: Stephen Morley
Cc: [EMAIL PROTECTED]
Subject: RE: Startup Time
Hi Stephen,
The solution is to not use inetd at all. Start sshd in your system start
up, such as the /etc/ec.d/inet.d directory on Linux. As you know inetd is
what runs not the servers it monitors ports for. When inetd gets a
request for a specific port it starts up the appropriate server. Since
ssh has to generate a 1024 byte key everytime it starts this takes a
while and is also know to timeout when used with inetd. You can shorted
the key length, but then the key is easier to break, so don't use inetd.
Carl
On 03-Apr-01 Stephen Morley wrote:
> This question is probably more about inet than ssh, but does anyone
> know how
> to get a connection faster. Sometime the system takes over 60s to
> connect
> even though it is not particularly busy.
>
> Stephen
------------------------------------------------------------------------
E-Mail: Carl J. Nobile <[EMAIL PROTECTED]>
Date: 03-Apr-01 Phone: 315-453-2912 Ex. 5336
Time: 10:55:48 Fax: 315-479-0859
Software Engineering Group -- AppliedTheory Corp.
224 Harrison Street, 6th Floor, Syracuse, NY 13202
------------------------------------------------------------------------
