Date: 22 Jun 2002 07:33:37 -0400 From: Dan Pelleg <daniel+bsd@pelleg.org> To: Lawrence Sica <lomifeh@earthlink.net> Cc: twig les <twigles@yahoo.com>, freebsd-security@FreeBSD.ORG Subject: Re: SSH timeout settings Message-ID: <u2s7kkrk0oe.fsf@gs166.sp.cs.cmu.edu> In-Reply-To: <3D1281DE.5000804@earthlink.net> References: <20020620214512.42806.qmail@web10101.mail.yahoo.com> <3D1281DE.5000804@earthlink.net>
next in thread | previous in thread | raw e-mail | index | archive | help
Lawrence Sica <lomifeh@earthlink.net> writes: > twig les wrote: > > Hey all, I think this is an easy one masquerading as a > > tough one.... My OpenSSH on my Free 4.4 Release box > > just lets me keep an open session indefinitely without > > any activity. I've read man sshd and all sorts of > > other things but no mention. > > So the short version is: where do I lower the timeout > > > of SSH? > > > > > > If you are using login with ssh, then you can modify login.conf: > > from man 5 login.conf > > idletime time Maximum idle time before logout. > > > Read the manpage for more info and don't forget to run cap_mkdb if you > change login.conf. > Does this actually work for you? There have been reports by different people that this is a no-op. A very old PR (conf/9874) suggests it was never implemented and should be removed from the manpage. The are at least two ports (blimitd and idled) that claim to enforce this limit - I've tried neither. -- Dan Pelleg To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?u2s7kkrk0oe.fsf>