From owner-freebsd-security Sun Sep 13 23:57:40 1998 Return-Path: Received: (from majordom@localhost) by hub.freebsd.org (8.8.8/8.8.8) id XAA16760 for freebsd-security-outgoing; Sun, 13 Sep 1998 23:57:40 -0700 (PDT) (envelope-from owner-freebsd-security@FreeBSD.ORG) Received: from aniwa.sky (pppk-28.igrin.co.nz [202.49.245.107]) by hub.freebsd.org (8.8.8/8.8.8) with ESMTP id XAA16753 for ; Sun, 13 Sep 1998 23:57:28 -0700 (PDT) (envelope-from andrew@squiz.co.nz) Received: from localhost (andrew@localhost) by aniwa.sky (8.8.7/8.8.7) with SMTP id SAA04317; Mon, 14 Sep 1998 18:51:01 +1200 (NZST) (envelope-from andrew@squiz.co.nz) Date: Mon, 14 Sep 1998 18:51:01 +1200 (NZST) From: Andrew McNaughton X-Sender: andrew@aniwa.sky Reply-To: andrew@squiz.co.nz To: "Jeffrey J. Mountin" cc: Roger Marquis , freebsd-security@FreeBSD.ORG Subject: Re: sshd In-Reply-To: <3.0.3.32.19980914002155.0078fb78@207.227.119.2> Message-ID: MIME-Version: 1.0 Content-Type: TEXT/PLAIN; charset=US-ASCII Sender: owner-freebsd-security@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.org On Mon, 14 Sep 1998, Jeffrey J. Mountin wrote: > >Other than that I've frequently run into situations where keepalives > >had to be turned off. In those cases ssh sessions invariably die and > >their daemons have to be killed-off by hand (kill ). As it is > >difficult to tell the original daemon from the child daemons it's also > >easy to accidentally kill the parent. If ssh is the only access you're > >locked-out. Easier and more consistent to use inetd where it's > >available, IMHO and YMMV. > > Rarely have I seen hung sessions, even after being rudely disconnected > by the IPS(s) I connect into. Even then what's so diffifcult about > killing the child? I've had problems after having my modem drop and redial. Mostly sessions seem to survive this (with a fixed IP), but occasionally they haven't, and I've been unable to create new connections to sshd until I've killed the demon process of the crashed session. This has happened to me three times, and in all cases I've had multiple sessions open and I've still had a live connection which I've been able to use to retrieve the situation. I can't say whether sshd recovers itself eventually, but it's not quick. Andrew McNaughton To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message