From owner-freebsd-questions@FreeBSD.ORG Mon Jan 31 08:00:56 2005 Return-Path: Delivered-To: freebsd-questions@freebsd.org Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125]) by hub.freebsd.org (Postfix) with ESMTP id 5BDDB16A4CE for ; Mon, 31 Jan 2005 08:00:56 +0000 (GMT) Received: from rproxy.gmail.com (rproxy.gmail.com [64.233.170.199]) by mx1.FreeBSD.org (Postfix) with ESMTP id 5F3D643D4C for ; Mon, 31 Jan 2005 08:00:53 +0000 (GMT) (envelope-from greatnorthern@gmail.com) Received: by rproxy.gmail.com with SMTP id z35so764789rne for ; Mon, 31 Jan 2005 00:00:52 -0800 (PST) DomainKey-Signature: a=rsa-sha1; q=dns; c=nofws; s=beta; d=gmail.com; h=received:message-id:date:from:reply-to:to:subject:in-reply-to:mime-version:content-type:content-transfer-encoding:references; b=fe9JZMjjMZ6HpHAcyw1xQiW9XW3Y/mmyWMw9vq74mNqS0ph6PpBtIQpSQftZwbcuAZL99a/KbD0rSvu2zHFzCTw+VOi3VUElJpsNhhS0FrrY9fFo6jw592HtswY8wUb+50FD1RhN4eHruR69k7J6VMGT5qt3h8vwPhW7mfw/wPw= Received: by 10.38.99.14 with SMTP id w14mr235966rnb; Mon, 31 Jan 2005 00:00:52 -0800 (PST) Received: by 10.38.209.80 with HTTP; Mon, 31 Jan 2005 00:00:52 -0800 (PST) Message-ID: <467b1e7a050131000064c42dd5@mail.gmail.com> Date: Mon, 31 Jan 2005 09:00:52 +0100 From: Fabian Anklam To: nigel@eyede.com, freebsd-questions@freebsd.org In-Reply-To: <41F9B721.7090602@eyede.com> Mime-Version: 1.0 Content-Type: text/plain; charset=US-ASCII Content-Transfer-Encoding: 7bit References: <467b1e7a050127172176b829f4@mail.gmail.com> <467b1e7a05012719057f9b7a30@mail.gmail.com> <41F9ADCE.4080705@eyede.com> <467b1e7a050127192736557aed@mail.gmail.com> <41F9B20C.5070304@eyede.com> <467b1e7a050127194414e626b6@mail.gmail.com> <41F9B721.7090602@eyede.com> Subject: Re: sshd_config / failed authentication X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.1 Precedence: list Reply-To: Fabian Anklam List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Mon, 31 Jan 2005 08:00:56 -0000 On Fri, 28 Jan 2005 16:53:05 +1300, Nigel Wohlers wrote: > Sorry, that's all the info I have on the subject, I recall a similar > issue I encountered a while ago and that seemed to be the cause. Was > just my initial postulation. > > > Fabian Anklam wrote: > > On Fri, 28 Jan 2005 16:31:24 +1300, Nigel Wohlers wrote: > > > >>What is the value of "LoginGraceTime"? > >> > >>SSH will try to do a reverse lookup on the IP connecting to it and if > >>that times out before "LoginGraceTime" then your client (putty) will get > >>booted and SSH will report the failure to syslog. > >> > >> > >>Fabian Anklam wrote: > >> > >>>>Reverse DNS lookup timeout? > >>>> > >>>>N > >>>> > >>> > >>> > >>>Authentication seems to be the problem, not connection, care to elaborate? > >>> > >>>Thanks, > >>> > >>>Fabian > >> > > > > LoginGraceTime was left at default value (2 minutes iirc). Adding the > > Windows box to /etc/hosts doesn't resolve the problem. > > > > sshd writes > > > > sshd[procid]: fatal: Timeout before authentication for windows.box.ip > > > > to /var/log/messages > > > > Fabian > Hi Nigel, sorry for brushing your suggestion off so quickly. SSHD trying a reverse DNS of the (private IP) ssh'ing machines name via my ISP's DNS servers which were in resolv.conf thanks to the machine being configured with DHCP once seemed to be the cause of the problem. Again, thanks for your help!