Re: OpenSSH not closing idle sessions.
- Date: Tue, 9 Apr 2019 11:09:37 -0400
- From: Greg Wooledge <wooledg@xxxxxxxxxxx>
- Subject: Re: OpenSSH not closing idle sessions.
On Tue, Apr 09, 2019 at 04:01:20PM +0100, Thomas Pircher wrote:
> > > ClientAliveInterval 5
> This is the setting that the STIG ID RHEL-07-040320 in  suggests to
>  https://iase.disa.mil/stigs
>  https://rhel7stig.readthedocs.io/en/latest/medium.html#v-72237-all-network-connections-associated-with-ssh-traffic-must-terminate-at-the-end-of-the-session-or-after-10-minutes-of-inactivity-except-to-fulfill-documented-and-validated-mission-requirements-rhel-07-040320
I suggest reading what ClientAliveCountMax and ClientAliveInterval
actually do in sshd_config(5). Take particular note of the word
"unresponsive". It is not the same as "idle".