[Bug 210479] blacklistd(8) and sshd(8) causes login delays and syslog(8) spam

bugzilla-noreply at freebsd.org bugzilla-noreply at freebsd.org
Thu Jun 23 01:41:29 UTC 2016


--- Comment #3 from Glen Barber <gjb at FreeBSD.org> ---
(In reply to lidl from comment #2)
> The debug logging is expected.

I think this makes auditdistd(8) unhappy.

> I'm unclear by your comment about delays - delays due to the error state, or
> delay due to the extra syslog statements.
> In timing of a simple 'ssh hostname df \> /dev/null', I get the same
> wall-clock time, regardless of blacklistd running on the remote host.
> (I do see the debug messages in the debug.log on the remote host.)
> Can you quantify the delays you're seeing?

Between head and stable/10, I see an increase in responsiveness.
 gjb at nucleus:~ % time ssh ref10-amd64.freebsd.org exit
 0.010u 0.010s 0:01.14 1.7%      192+148k 4+0io 0pf+0w

 gjb at nucleus:~ % time ssh ref11-amd64.freebsd.org exit
 0.020u 0.000s 0:01.55 1.2%      96+74k 4+1io 0pf+0w

The only "known" difference is the addition of blacklistd(8).

In either case, I think the debug.log spam is a bit overkill, especially for
machines without large /var directories (embedded systems, etc.).

You are receiving this mail because:
You are the assignee for the bug.

More information about the freebsd-bugs mailing list