From owner-freebsd-questions@FreeBSD.ORG  Wed Apr  9 13:46:18 2003
Return-Path: <owner-freebsd-questions@FreeBSD.ORG>
Delivered-To: freebsd-questions@freebsd.org
Received: from mx1.FreeBSD.org (mx1.freebsd.org [216.136.204.125])
	by hub.freebsd.org (Postfix) with ESMTP id E74B337B401
	for <questions@freebsd.org>; Wed,  9 Apr 2003 13:46:18 -0700 (PDT)
Received: from narcissus.net (narcissus.net [166.84.167.71])
	by mx1.FreeBSD.org (Postfix) with ESMTP id 61F7443FA3
	for <questions@freebsd.org>; Wed,  9 Apr 2003 13:46:18 -0700 (PDT)
	(envelope-from questions@narcissus.net)
Received: by narcissus.net (Postfix, from userid 1000)
	id 303F9D2DFD; Wed,  9 Apr 2003 16:46:17 -0400 (EDT)
Date: Wed, 9 Apr 2003 16:46:17 -0400
From: Ben Rosengart <questions@narcissus.net>
To: questions@freebsd.org
Message-ID: <20030409204617.GA7791@narcissus.net>
References: <20030407202027.GA32057@narcissus.net>
	<44smsrv23y.fsf@be-well.ilk.org>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <44smsrv23y.fsf@be-well.ilk.org>
User-Agent: Mutt/1.4.1i
Subject: Re: stray sshd processes
X-BeenThere: freebsd-questions@freebsd.org
X-Mailman-Version: 2.1.1
Precedence: list
List-Id: User questions <freebsd-questions.freebsd.org>
List-Unsubscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=unsubscribe>
List-Archive: <http://lists.freebsd.org/pipermail/freebsd-questions>
List-Post: <mailto:freebsd-questions@freebsd.org>
List-Help: <mailto:freebsd-questions-request@freebsd.org?subject=help>
List-Subscribe: <http://lists.freebsd.org/mailman/listinfo/freebsd-questions>,
	<mailto:freebsd-questions-request@freebsd.org?subject=subscribe>
X-List-Received-Date: Wed, 09 Apr 2003 20:46:19 -0000

On Wed, Apr 09, 2003 at 04:37:37PM -0400, Lowell Gilbert wrote:
> Ben Rosengart <questions@narcissus.net> writes:
> 
> > Hello,
> >   I'm running STABLE as of about a month ago. I have a shell user whose
> > ssh connection is sometimes disconnected by a firewall between her
> > network and mine.  When this happens, the privileged sshd child for her
> > session does not terminate.  Once a number of them equal to "MaxStartups"
> > accumulates, new connections cannot be made, which is annoying, to say
> > the least.

Odd addendum: the disconnects were a red herring.  This happens
whenever the user logs in and out.
 
> The firewall probably drops everything for the session afterwards.  
> Adding keepalives would probably help...

They're on by default:

% grep -i keepalive /etc/ssh/sshd_config
#KeepAlive yes

-- 
 Ben

"When I say 'literally', I literally mean 'literally'."