SSH Server Slow/Lagged/Delayed Login Response

This is really something the SSH Server developers should consider.  The cause of this annoyance is because of failed DNS lookups on your IP address, which is especially common for many dedicated/col-located servers and also computers on internal NAT/private networks.

The chances are this is the cause of your SSH Slow/Delayed Login problems.

The easy solution to SSH Login Problems

Edit /etc/ssh/sshd_config

Add this line to disable reverse DNS lookups when someone is logging into your SSH Server:

UseDNS no

*Don't forget to restart your SSH daemon for the change to take effect!

It would make sense for this option to be disabled by default, especially considering that someone could have a fake or invalid reverse DNS which makes it impossible to find who was really logged in or trying to login.

The SSH daemon should not initially due any reverse DNS or at least allow the login process to continue and try a few more times during the session to find the reverse DNS if it must.

Another symptom aside from it being slow is if you debug the SSH client and see things freeze here:

debug1: SSH2_MSG_SERVICE_ACCEPT received

The problem will be solved once you apply "UseDNS no" to you sshd_confdig and restart SSH.


Tags:

ssh, server, lagged, delayed, login, responsethis, developers, annoyance, dns, lookups, ip, dedicated, col, located, servers, nat, networks, edit, etc, sshd_config, disable, logging, usedns, restart, daemon, disabled, default, invalid, logged, initially, symptom, debug, _msg_service_accept, quot, sshd_confdig,

Latest Articles

  • Cannot Print PDF Solution and Howto Resize
  • Linux Console Login Screen TTY Change Message
  • Apache Cannot Start Listening Already on 0.0.0.0
  • MySQL Bash Query to pipe input directly without using heredoc trick
  • CentOS 6 and 7 / RHEL Persistent DHCP Solution
  • Debian Ubuntu Mint rc-local service startup error solution rc-local.service: Failed at step EXEC spawning /etc/rc.local: Exec format error
  • MySQL Cheatsheet Guide and Tutorial
  • bash script kill whois or other command that is running for too long
  • Linux tftp listens on all interfaces and IPs by DEFAULT Security Risk Hole Solution
  • python import docx error
  • Cisco Unified Communications Manager Express Cheatsheet CUCME CME
  • Linux Ubuntu Debian Missing privilege separation directory: /var/run/sshd
  • bash how to count the number of columns or words in a line
  • bash if statement how to test program output without assigning to variable
  • RTNETLINK answers: Network is unreachable
  • Centos 7 how to save iptables rules like Centos 6
  • nfs tuning maximum amount of connections
  • qemu-kvm error "Could not initialize SDL(No available video device) - exiting"
  • Centos 7 tftpd will not work with selinux enabled
  • Debian Ubuntu Mint Howto Create Bridge (br0)