ssh緩慢認證可以繼續

Question

我一直在這個問題上googling了一段時間，但我還沒有找到一個解決方案的工作。 問題是SSH登錄到我的服務器突然很慢。我可以看到它需要大約10秒的認證比之前的能繼續下去，這是我的ssh詳細日誌：

OpenSSH_7.3p1, LibreSSL 2.4.1 
debug1: Reading configuration data /etc/ssh/ssh_config 
debug1: /etc/ssh/ssh_config line 20: Applying options for * 
debug1: Connecting to 54.86.29.78 [54.86.29.78] port 22. 
debug1: Connection established. 
debug1: key_load_public: No such file or directory 
debug1: identity file .ssh/id_rsa type -1 
debug1: key_load_public: No such file or directory 
debug1: identity file .ssh/id_rsa-cert type -1 
debug1: Enabling compatibility mode for protocol 2.0 
debug1: Local version string SSH-2.0-OpenSSH_7.3 
debug1: Remote protocol version 2.0, remote software version OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.4 
debug1: match: OpenSSH_6.6.1p1 Ubuntu-2ubuntu2.4 pat OpenSSH_6.6.1* compat 0x04000000 
debug1: Authenticating to 54.86.29.78:22 as 'perfeyhe' 
debug1: SSH2_MSG_KEXINIT sent 
debug1: SSH2_MSG_KEXINIT received 
debug1: kex: algorithm: curve25519-sha256@libssh.org 
debug1: kex: host key algorithm: ecdsa-sha2-nistp256 
debug1: kex: server->client cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none 
debug1: kex: client->server cipher: chacha20-poly1305@openssh.com MAC: <implicit> compression: none 
debug1: expecting SSH2_MSG_KEX_ECDH_REPLY 
debug1: Server host key: ecdsa-sha2-nistp256 SHA256:g/REeuiZutP7YHv6WJR/vhm4kROJQ+9e0ODdd1Tuvpc 
debug1: Host '54.86.29.78' is known and matches the ECDSA host key. 
debug1: Found key in /Users/admin/.ssh/known_hosts:3 
debug1: rekey after 134217728 blocks 
debug1: SSH2_MSG_NEWKEYS sent 
debug1: expecting SSH2_MSG_NEWKEYS 
debug1: rekey after 134217728 blocks 
debug1: SSH2_MSG_NEWKEYS received 
debug1: SSH2_MSG_SERVICE_ACCEPT received 
---------------------------------- 
takes about 10s 
---------------------------------- 
debug1: Authentications that can continue: publickey,password,keyboard-interactive 
debug1: Next authentication method: publickey 
debug1: Trying private key: .ssh/id_rsa 
debug1: Authentication succeeded (publickey). 
Authenticated to 54.86.29.78 ([54.86.29.78]:22). 
debug1: channel 0: new [client-session] 
debug1: Requesting no-more-sessions@openssh.com 
debug1: Entering interactive session. 
debug1: pledge: network 
debug1: Sending environment. 
debug1: Sending env LANG = zh_CN.UTF-8 
Welcome to Ubuntu 14.04.3 LTS (GNU/Linux 3.13.0-74-generic x86_64) 

和附件是我從Wireshark的看到： enter image description here

Answer 1

延遲是在服務器上，所以你不能看到任何重要的客戶端日誌或客戶端wireshark轉儲。

有幾種可能會導致這種情況，但最有可能的是在服務器sshd_config中啓用UseDNS。嘗試禁用它（將UseDNS no寫入/etc/ssh/sshd_config），重新啓動sshd服務（service sshd restart）並重試。

如果沒有幫助，請在同一個文件中設置DEBUG3LogLevel，重新啓動並查看服務器日誌「掛起」的位置以及它的等待狀態。

Answer 2

我解決了這個問題，如下所示：

systemctl restart systemd-logind 

由@HBruijn在這個線程的答案發現這一點：https://serverfault.com/questions/707377/slow-ssh-login-activation-of-org-freedesktop-login1-timed-out。