[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

Re: ssh connection takes long time

Boyd Stephen Smith Jr. wrote:
On Friday 13 March 2009 08:41:52 Abdelkader Belahcene wrote:
If you are using the OpenSSH daemon on the remote server and that daemon is using the default configuration, it does a reverse DNS lookup on the connecting IP before accepting the login.

IIRC, It is possible to disable this reverse DNS lookup in the OpenSSH daemon configuration. It is not possible to disable this lookup by adjusting the client configuration or version.

In general, you should make sure reverse DNS works for all your IPs.
i doubt that this is a sensible default, if i'm wrong please let me know ;)

as far as i know the only other time a reverse DNS is needed would be if you are running a mail server, and even then i notice that the number of mail servers actually checking for PTR records is very very small.

besides how would you do this with a dynamic IP, we are talking clients here and you never know what ISP you might use when traveling around. also i see very little function to this, besides some extra unneeded info in the log i don't see any added security in this feature.

but then again, i might be wrong.


Just another collection of nuts

Reply to: