- Community Home
- >
- Servers and Operating Systems
- >
- Operating Systems
- >
- Operating System - HP-UX
- >
- Re: ssh upgrade --login prompt takes time
Categories
Company
Local Language
Forums
Discussions
Forums
- Data Protection and Retention
- Entry Storage Systems
- Legacy
- Midrange and Enterprise Storage
- Storage Networking
- HPE Nimble Storage
Discussions
Discussions
Discussions
Forums
Forums
Discussions
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
- BladeSystem Infrastructure and Application Solutions
- Appliance Servers
- Alpha Servers
- BackOffice Products
- Internet Products
- HPE 9000 and HPE e3000 Servers
- Networking
- Netservers
- Secure OS Software for Linux
- Server Management (Insight Manager 7)
- Windows Server 2003
- Operating System - Tru64 Unix
- ProLiant Deployment and Provisioning
- Linux-Based Community / Regional
- Microsoft System Center Integration
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Discussion Boards
Community
Resources
Forums
Blogs
- Subscribe to RSS Feed
- Mark Topic as New
- Mark Topic as Read
- Float this Topic for Current User
- Bookmark
- Subscribe
- Printer Friendly Page
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-01-2009 11:16 PM
тАО07-01-2009 11:16 PM
before install:
Secure_Shell A.05.10.006 HP-UX Secure Shell
After install
Secure_Shell A.05.20.004 HP-UX Secure Shell
Os version is B.11.11 and model9000/800/rp7420
After upgrade it was taking 1 to 2 minutes to get login prompt. Please advice if we need to change any configuration in ssh after install.
Solved! Go to Solution.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-01-2009 11:24 PM
тАО07-01-2009 11:24 PM
SolutionAny of the commands from ssh_prng_cmds can be a cause for slowdown. For example if /var/adm/wtmp is large, /usr/bin/last will take a while to run.
Check what files ssh-rand-helper has opened with lsof or attach to it with tusc to see what it's up to.
Thanks,
Johnson
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-01-2009 11:36 PM
тАО07-01-2009 11:36 PM
Re: ssh upgrade --login prompt takes time
Are you sure that login take long time exactly after ssh upgrade?
How about other logins like telnet or rlogin?
is the server running without any resource bottleneck?
You could also try ssh -vv username@server to get the debug messages.
Ganesh.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-05-2009 11:00 PM
тАО07-05-2009 11:00 PM
Re: ssh upgrade --login prompt takes time
With lsof i am not able to find any process
(ttetimqa:/opt/ssh/etc)# lsof |grep -i ssh_prng_cmds
(ttetimqa:/opt/ssh/etc)#
=============================================
(ttetimqa:/opt/ssh/etc)# more ssh_prng_cmds
# entropy gathering commands
# Format is: "program-name args" path rate
# The "rate" represents the number of bits of usuable entropy per
# byte of command output. Be conservative.
#
# $Id: ssh_prng_cmds,v 1.1.1.1 2007/02/06 05:50:41 cvsuser Exp $
"ls -alni /usr/adm" /usr/bin/ls 0.02
"ls -alni /etc/mail" /usr/bin/ls 0.02
"ls -alni /usr/mail" /usr/bin/ls 0.02
"ls -alti /usr/adm/syslog" /usr/bin/ls 0.02
"ls -alti /var/adm/syslog" /usr/bin/ls 0.02
"ls -alti /usr/bin" /usr/bin/ls 0.02
"ls -alti /usr/tmp" /usr/bin/ls 0.02
"ls -alti /opt" /usr/bin/ls 0.02
"ps -al" /usr/bin/ps 0.03
"ps -ex" /usr/bin/ps 0.03
"who am i" /usr/bin/who 0.01
"vmstat" /usr/bin/vmstat 0.01
"tail -100 /var/adm/syslog" /usr/bin/tail 0.01
"tail -100 /var/adm" /usr/bin/tail 0.01
"tail -100 /var/adm/syslog/mail.log" /usr/bin/tail 0.01
"ls -alni /dev/log" /usr/bin/ls 0.02
"ls -alni /var/adm" /usr/bin/ls 0.02
"ls -alni /var/adm/syslog" /usr/bin/ls 0.02
"ls -alni /usr/adm/syslog" /usr/bin/ls 0.02
"ls -alni /usr/bin" /usr/bin/ls 0.02
"ls -alni /tmp" /usr/bin/ls 0.02
"ls -alni /var/tmp" /usr/bin/ls 0.02
"ls -alni /usr/tmp" /usr/bin/ls 0.02
"ls -alti /dev/log" /usr/bin/ls 0.02
"ls -alti /var/adm" /usr/bin/ls 0.02
"ls -alti /etc/mail" /usr/bin/ls 0.02
"ls -alti /tmp" /usr/bin/ls 0.02
"ls -alti /var/tmp" /usr/bin/ls 0.02
"netstat -an" /usr/bin/netstat 0.05
"ps laxww" /usr/bin/ps 0.03
"ps -efl" /usr/bin/ps 0.03
"w" /usr/bin/w 0.05
"who -u" /usr/bin/who 0.01
"last" /usr/bin/last 0.01
"last log" /usr/bin/last 0.01
"uptime" /usr/bin/uptime 0.01
"ipcs -a" /usr/bin/ipcs 0.01
"tail -100 /var/adm/syslog/syslog.log" /usr/bin/tail 0.01
"tail -100 /var/adm/syslog/syslog.log" /usr/bin/tail 0.01
#"sar -d 1 2" /usr/sbin/sar 0.04
#"netstat -rn" /usr/bin/netstat 0.05
#"netstat -n" /usr/bin/netstat 0.05
#"netstat -s" /usr/bin/netstat 0.05
#"netstat -is" /usr/bin/netstat 0.05
#"arp -a" /usr/sbin/arp 0.02
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-05-2009 11:09 PM
тАО07-05-2009 11:09 PM
Re: ssh upgrade --login prompt takes time
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-05-2009 11:13 PM
тАО07-05-2009 11:13 PM
Re: ssh upgrade --login prompt takes time
There is a config option in your sshd.conf that looks like this:
UseDNS no
This is per default commented out because this feature is default "yes".
Best regards
Fredrik Eriksson
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-05-2009 11:40 PM
тАО07-05-2009 11:40 PM
Re: ssh upgrade --login prompt takes time
Jitesh
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-06-2009 01:01 AM
тАО07-06-2009 01:01 AM
Re: ssh upgrade --login prompt takes time
First thing I always do to eliminate common cause is this:
try the ssh login via hostname, then numeric ip.
If its faster via numeric ip, it signals a DNS problem. If you are not using DNS another common problem is an HP-UX server needs an /etc/hosts entry for itself on the server side so it does self lookup in a reasonable period of time.
You see ssh runs a number of integrity checks including makeing sure a hostname login matches the system.
If I log into a system ssh -vvv server2, part of the login process on the server is to make sure the server sees itself as server2.
It might still accept the login but if nslookup server2 does not provide a good answer, it really slows down the login process.
The other possibility is bad secure shell software. The only way to deal with that is to report the problem to HP via the http://software.hp.com website and wait for a new version.
As it so happens, I just spent my Sunday resurrecting my two D class systems in preparation for building a Service Guard Cluster. One of the things I did not get to is updating Secure Shell. Currently the website is not working for me, but as soon as it is, I will install it and report test results back to you.
SEP
Owner of ISN Corporation
http://isnamerica.com
http://hpuxconsulting.com
Sponsor: http://hpux.ws
Twitter: http://twitter.com/hpuxlinux
Founder http://newdatacloud.com
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-06-2009 10:26 PM
тАО07-06-2009 10:26 PM
Re: ssh upgrade --login prompt takes time
Fredrik,
In sshd.conf the line is UseDNS yes is commented.
I replace with UseDNS no. But still resolved.
Jitesh,
I am using putty software. Looks normal in event logs.
Steven,
We are using only ip address in putty to login with ssh.
It is taking now 30 sec to login hope the up gradation version is like that.
Earlier version it used to take 5 to 10 sec.
- Mark as New
- Bookmark
- Subscribe
- Mute
- Subscribe to RSS Feed
- Permalink
- Report Inappropriate Content
тАО07-07-2009 05:11 AM
тАО07-07-2009 05:11 AM
Re: ssh upgrade --login prompt takes time
ssh -vvv my_ssh_upgraded_server
and post the debug output here for further help. What it sounds like, it is either looking for an extra authentication which was not there before, a timeout value somehow got changed.
Also helpful is posting your /opt/ssh/etc/sshd_conf file contents here.
UNIX because I majored in cryptology...