Web lists-archives.com

Re: OpenSSH not closing idle sessions.




On Tue, Apr 09, 2019 at 04:01:20PM +0100, Thomas Pircher wrote:
> > > ClientAliveInterval 5
> 
> This is the setting that the STIG ID RHEL-07-040320 in [2] suggests to
> edit.
> 
> Thomas
> 
> [1] https://iase.disa.mil/stigs
> [2] https://rhel7stig.readthedocs.io/en/latest/medium.html#v-72237-all-network-connections-associated-with-ssh-traffic-must-terminate-at-the-end-of-the-session-or-after-10-minutes-of-inactivity-except-to-fulfill-documented-and-validated-mission-requirements-rhel-07-040320

Pathetic.

I suggest reading what ClientAliveCountMax and ClientAliveInterval
actually do in sshd_config(5).  Take particular note of the word
"unresponsive".  It is not the same as "idle".