Date: Fri, 03 May 2013 08:51:33 -0600 From: markham breitbach <markham_breitbach@ssimicro.com> To: freebsd-questions@freebsd.org Subject: Re: sshd - time out idle connections Message-ID: <5183CEF5.1070604@ssimicro.com> In-Reply-To: <1698EAB7-4B40-466D-98CB-782E9E494578@my.gd> References: <1698EAB7-4B40-466D-98CB-782E9E494578@my.gd>
next in thread | previous in thread | raw e-mail | index | archive | help
Depending on the shell you are using, you may be able to set that to auto-logout, or you could set a cron job to run every 5 minutes and terminate tty's with > 5min idle time. Honestly though, you will rarely find a good technical solution to a social problem--there's always a work-around--and this is a social problem. If there is a company security policy stating that ssh sessions are not to be left idling > 5 min, then make sure everyone is aware of this policy and start handing out pink slips to people that violate it. -M On 13-05-03 8:28 AM, Fleuriot Damien wrote: > Hello list, > > > > I'm facing this unusual demand at work where we need to time out idle SSH connections for security purposes. > > I've checked the following options from sshd_config but none seems to fit my needs : > TCPKeepAlive > ClientAliveCountMax > ClientAliveInterval > > > Basically, I'm trying to defeat the use of the following client-side option: > ServerAliveInterval 5 > > > I'm afraid all I've hit now is dead ends. > > > Has anyone ever had the same requirements before and, perhaps, found a solution to this ? > > _______________________________________________ > freebsd-questions@freebsd.org mailing list > http://lists.freebsd.org/mailman/listinfo/freebsd-questions > To unsubscribe, send any mail to "freebsd-questions-unsubscribe@freebsd.org"
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5183CEF5.1070604>