From mboxrd@z Thu Jan 1 00:00:00 1970 Return-Path: Received: from lists.gentoo.org (pigeon.gentoo.org [208.92.234.80]) by finch.gentoo.org (Postfix) with ESMTP id 807C713877A for ; Wed, 25 Jun 2014 19:51:11 +0000 (UTC) Received: from pigeon.gentoo.org (localhost [127.0.0.1]) by pigeon.gentoo.org (Postfix) with SMTP id 1BF75E0985; Wed, 25 Jun 2014 19:50:43 +0000 (UTC) Received: from mail-we0-f181.google.com (mail-we0-f181.google.com [74.125.82.181]) (using TLSv1 with cipher ECDHE-RSA-RC4-SHA (128/128 bits)) (No client certificate requested) by pigeon.gentoo.org (Postfix) with ESMTPS id 026CEE0964 for ; Wed, 25 Jun 2014 19:50:31 +0000 (UTC) Received: by mail-we0-f181.google.com with SMTP id q59so2687938wes.12 for ; Wed, 25 Jun 2014 12:50:29 -0700 (PDT) DKIM-Signature: v=1; a=rsa-sha256; c=relaxed/relaxed; d=gmail.com; s=20120113; h=message-id:date:from:user-agent:mime-version:to:subject:references :in-reply-to:content-type:content-transfer-encoding; bh=jXw9VwuwJqRH68aFdsJ/8HOdRyrOWxdyttL5u4TCcQ0=; b=XNLs+RyjqLTAtPgJGDvaxlXNXAEy3PyFml7C3H8WQ71coaZXkEezFjUzIFPcjQ3pFz jl0IbsDML8QaHdIfnqz+kOptYE/8D6QjMyt0pnS5uf3wRlN8S+YF1dPgHmkPGp7y8CjX vq3aTO2G11zFL9NAmegxRMk28X9Rdx2Y44V7cdRyoYwjKu3PHNAmDpO7tO6CW3SCLeOt q25zcmIUo6sFYG+KxLCyz8xmJWOiTaUQI6QwImAw7q8scOM0gGXn5GKZufUol4Flzunx MPSgm1KhQ4YdNf9KZalJEqCPzJIJdS0PgUSt683SKuBExlLkfYaia14aYh2nFLUf7wEY Lorg== X-Received: by 10.180.82.166 with SMTP id j6mr9017392wiy.71.1403725829647; Wed, 25 Jun 2014 12:50:29 -0700 (PDT) Received: from [172.20.0.41] (196-210-127-155.dynamic.isadsl.co.za. [196.210.127.155]) by mx.google.com with ESMTPSA id n2sm7105229wjf.40.2014.06.25.12.50.27 for (version=TLSv1 cipher=ECDHE-RSA-RC4-SHA bits=128/128); Wed, 25 Jun 2014 12:50:29 -0700 (PDT) Message-ID: <53AB27D1.3080401@gmail.com> Date: Wed, 25 Jun 2014 21:49:37 +0200 From: Alan McKinnon User-Agent: Mozilla/5.0 (X11; Linux x86_64; rv:24.0) Gecko/20100101 Thunderbird/24.6.0 Precedence: bulk List-Post: List-Help: List-Unsubscribe: List-Subscribe: List-Id: Gentoo Linux mail X-BeenThere: gentoo-user@lists.gentoo.org Reply-to: gentoo-user@lists.gentoo.org MIME-Version: 1.0 To: gentoo-user@lists.gentoo.org Subject: Re: [gentoo-user] Re: ssh rekeying slow ? References: <53AAA209.1000900@xunil.at> <53AB17C7.10001@xunil.at> In-Reply-To: <53AB17C7.10001@xunil.at> Content-Type: text/plain; charset=ISO-8859-1 Content-Transfer-Encoding: 7bit X-Archives-Salt: af1901bc-58be-4776-8a0a-c61b0ccdf914 X-Archives-Hash: adbda22b83ed93df8b776b36c3c6c9b5 On 25/06/2014 20:41, Stefan G. Weichinger wrote: > Am 25.06.2014 20:30, schrieb James: >> Stefan G. Weichinger xunil.at> writes: >> >> >>> When I ssh into a server in my basement, this takes way more time than >>> usual. >>> Does anyone have an idea what I could do to fix that? >> >> >> ssh has an ordered array of negotiations between systems that are related >> to the version numbers of ssh and the other configurations. There is >> usually a mismatch, when it takes "too long" to start a session, >> in my experience. >> >> I did not look at the specifics you posted. > > both servers/machines run net-misc/openssh-6.6.1_p1 ... re-compiled > right today. I've also noticed slowdowns recently, I think it's the new ciphers likes ecdsa. Try this: Connect using ssh -vvv and examine the output to find which of the various ciphers and algorithms are used once connection is achieved. On the client, add those configuration options for the server to ssh_config. You should notice a speed up on the next attempt as unused methods will be skipped man 5 ssh_config has all the details -- Alan McKinnon alan.mckinnon@gmail.com