Re: sshd - time out idle connections

2013-05-03 Thread Polytropon
On Fri, 3 May 2013 17:22:04 +0200, Fleuriot Damien wrote: > Allow me to add a bit of context here. > > > We're wrapping things up to obtain the PCI DSS certification which > is awarded for running through a long and annoying series of hoops. > This certification is rather important to our busines

Re: sshd - time out idle connections

2013-05-03 Thread Joshua Isom
On 5/3/2013 10:05 AM, Fleuriot Damien wrote: Thanks for your response Markham, I'm afraid labor law is much too protective here for us to be able to "educate" users in this way;) Your idea to run a cron job every X minutes has merit though, I'll try and check into that ! If labor law's st

Re: sshd - time out idle connections

2013-05-03 Thread Mikel King
of connection outages if they can reconnect to where the were when they were last on. Regards, Mikel King BSD News _ From: Fleuriot Damien [mailto:m...@my.gd] To: FreeBSD questions [mailto:freebsd-questions@freebsd.org] Sent: Fri, 03 May 2013 10:28:31 -0400 Subject: sshd - time out

Re: sshd - time out idle connections

2013-05-03 Thread Arthur Chance
On 05/03/13 15:28, Fleuriot Damien wrote: Hello list, I'm facing this unusual demand at work where we need to time out idle SSH connections for security purposes. I've checked the following options from sshd_config but none seems to fit my needs : TCPKeepAlive ClientAliveCountMax ClientAliv

Re: sshd - time out idle connections

2013-05-03 Thread Fleuriot Damien
On May 3, 2013, at 5:16 PM, Arthur Chance wrote: > On 05/03/13 15:28, Fleuriot Damien wrote: >> Hello list, >> >> >> >> I'm facing this unusual demand at work where we need to time out idle SSH >> connections for security purposes. >> >> I've checked the following options from sshd_config b

Re: sshd - time out idle connections

2013-05-03 Thread Fleuriot Damien
where the were when they were > last on. > > Regards, > Mikel King > BSD News > > > From: Fleuriot Damien [mailto:m...@my.gd] > To: FreeBSD questions [mailto:freebsd-questions@freebsd.org] > Sent: Fri, 03 May 2013 10:28:31 -0400 > Subject: sshd - time out idle

Re: sshd - time out idle connections

2013-05-03 Thread Fleuriot Damien
Thanks for your response Markham, I'm afraid labor law is much too protective here for us to be able to "educate" users in this way ;) Your idea to run a cron job every X minutes has merit though, I'll try and check into that ! On May 3, 2013, at 4:51 PM, markham breitbach wrote: > Depend

Re: sshd - time out idle connections

2013-05-03 Thread markham breitbach
Depending on the shell you are using, you may be able to set that to auto-logout, or you could set a cron job to run every 5 minutes and terminate tty's with > 5min idle time. Honestly though, you will rarely find a good technical solution to a social problem--there's always a work-around--and t

sshd - time out idle connections

2013-05-03 Thread Fleuriot Damien
Hello list, I'm facing this unusual demand at work where we need to time out idle SSH connections for security purposes. I've checked the following options from sshd_config but none seems to fit my needs : TCPKeepAlive ClientAliveCountMax ClientAliveInterval Basically, I'm trying to defeat