sshd - time out idle connections

[Fleuriot Damien]

Thanks for your response Markham,


I'm afraid labor law is much too protective here for us to be able to "educate" users in this way ;)

Your idea to run a cron job every X minutes has merit though, I'll try and check into that !


On May 3, 2013, at 4:51 PM, markham breitbach <markham_breitbach at ssimicro.com> wrote:

> Depending on the shell you are using, you may be able to set that to auto-logout, or you
> could set a cron job to run every 5 minutes and terminate tty's with > 5min idle time.
> 
> Honestly though, you will rarely find a good technical solution to a social
> problem--there's always a work-around--and this is a social problem.  If there is a
> company security policy stating that ssh sessions are not to be left idling > 5 min, then
> make sure everyone is aware of this policy and start handing out pink slips to people that
> violate it.
> 
> -M
> 
> 
> On 13-05-03 8:28 AM, Fleuriot Damien wrote:
>> Hello list,
>> 
>> 
>> 
>> I'm facing this unusual demand at work where we need to time out idle SSH connections for security purposes.
>> 
>> I've checked the following options from sshd_config but none seems to fit my needs :
>> TCPKeepAlive
>> ClientAliveCountMax
>> ClientAliveInterval
>> 
>> 
>> Basically, I'm trying to defeat the use of the following client-side option:
>> ServerAliveInterval 5
>> 
>> 
>> I'm afraid all I've hit now is dead ends.
>> 
>> 
>> Has anyone ever had the same requirements before and, perhaps, found a solution to this ?
>> 
>> _______________________________________________
>> freebsd-questions at freebsd.org mailing list
>> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
>> To unsubscribe, send any mail to "freebsd-questions-unsubscribe at freebsd.org"
> 
> _______________________________________________
> freebsd-questions at freebsd.org mailing list
> http://lists.freebsd.org/mailman/listinfo/freebsd-questions
> To unsubscribe, send any mail to "freebsd-questions-unsubscribe at freebsd.org"