06-08-2012
PAM closing SSH session
Hello guys,
You are my last hope. I googled for hours and tried so many things but I can't find a way to fix my problem.
So there we go:
I open a SSH tunnel to my linux vps.
My client sends every 5-minutes a keepalive package and I also set the "ClientAliveInterval" value to 300 in the sshd_config.
Normally a client who connected via ssh to my vps can't timeout anymore.
BUT sometime I still have the problem that some clients get kicked.
They are still online and have internet but they get disconnected.
While searching for a solution of that problem I found the auth.log file.
There are all ssh connections logged.
Here is the line which shows when some client gets disconnected:
Jun 8 15:24:31 mainone sshd[13952]: pam_unix(sshd:session): session closed for user theuser
I searched for a way to prevent PAM to close sessions and things like that.
But I didn't find any working way.
Perhaps somebody has an idea of how to keep ssh sessions alive.
I am not that much experienced with linux and the whole system.
That's why I contact you.
I already thank you so muck for helping me.
10 More Discussions You Might Find Interesting
1. UNIX for Dummies Questions & Answers
Hi!
I currently run a very long script (two hour left...) on a remote computer through a ssh session. I wonder whats happend if I close the ssh session, or even, the terminal. Is the script running on remote will stop?
Thanks for your answers,
Tp (1 Reply)
Discussion started by: tipi
1 Replies
2. Solaris
Hi
we have a script which establish connection to two other UNIX server through ssh for transfering files
There was no exit command after each ssh connection
the script ends with done
whether this will close all the ssh connection established throgh script which running under cron... (4 Replies)
Discussion started by: GIC1986
4 Replies
3. Shell Programming and Scripting
I am using a shell script to telnet into a remote unix server and execute certain commands. But if any command being executed remotely, throws an error, the script just hangs. And the telnet session does not get closed.
I want to be able to close the session and complete the script execution in... (1 Reply)
Discussion started by: farahzaiba
1 Replies
4. UNIX for Dummies Questions & Answers
Hi,
I have ssh'd into a UNIX server at work from my linux desktop and executed a tar command to backup up some directories to a tape drive. I was wondering would the tar command still execute to completion if I closed my terminal console on my desktop that is connected to the server, would the... (1 Reply)
Discussion started by: mojoman
1 Replies
5. OS X (Apple)
Might anyone have an idea on how to mount an xserve share via ssh, then close the share connection? (3 Replies)
Discussion started by: unimachead
3 Replies
6. Shell Programming and Scripting
I am using Net::SSH::Expect to connect to the device(iLO) with SSH. After the $ssh->login() I'm able to view the prompt, but not able to send any coommands.
With the putty I can connect to the device and execute the commands without any issues.
Here is the sample script
my $ssh =... (0 Replies)
Discussion started by: hansini
0 Replies
7. HP-UX
Our network administrators implemented some sort of check to kill idle sessions and now burden is on us to run some sort of keep alive. Client based keep alive doesn't do a very good job. I have same issue with ssh. Does solution 2 provided above apply for ssh sessions also? (1 Reply)
Discussion started by: yoda9691
1 Replies
8. Solaris
This is a zone running Solaris 10u8 on a 6320 blade. The global zone is also running 10u8.
One my users is attempting to change his password and getting a following screen:
$ ssh remotesys
Password:
Warning: Your password has expired, please change it now.
New Password:
Re-enter new... (1 Reply)
Discussion started by: bluescreen
1 Replies
9. Emergency UNIX and Linux Support
look at this, as root user change passwd and su -:
I cannot ssh in or rlogin either, (3 Replies)
Discussion started by: bigearsbilly
3 Replies
10. Emergency UNIX and Linux Support
I am running a process in nohup .
nohup getkeys.ksh 132 > 132.out &
When I close the putty terminal,The process is getting killed .
default_signal_handler called for signal no: 1
Is there a way to keep the process running even If I close the terminal (2 Replies)
Discussion started by: prasperl
2 Replies
LEARN ABOUT HPUX
ssh-keysign
ssh-keysign(1M) ssh-keysign(1M)
NAME
ssh-keysign - ssh helper program for host-based authentication
SYNOPSIS
ssh-keysign
ssh-keysign is used by ssh(1) to access the local host keys and generate the digital signature required during host-based authentication
with SSH protocol version 2. This signature is of data that includes, among other items, the name of the client host and the name of the
client user.
ssh-keysign is disabled by default and can be enabled only in the global client configuration file /etc/ssh/ssh_config by setting Host-
basedAuthentication to yes.
ssh-keysign is not intended to be invoked by the user, but from ssh. See ssh(1) and sshd(1M) for more information about host-based authen-
tication.
/etc/ssh/ssh_config
Controls whether ssh-keysign is enabled.
/etc/ssh/ssh_host_dsa_key
/etc/ssh/ssh_host_rsa_key
These files contain the private parts of the host keys used to generate the digital signature. They should be owned by root, readable
only by root, and not accessible to others. Because they are readable only by root, ssh-keysign must be set-uid root if host-based
authentication is used.
ssh-keysign will not sign host-based authentication data under the following conditions:
o If the HostbasedAuthentication client configuration parameter is not set to yes in /etc/ssh/ssh_config. This setting cannot be overri-
den in users' ~/.ssh/ssh_config files.
o If the client hostname and username in /etc/ssh/ssh_config do not match the canonical hostname of the client where ssh-keysign is
invoked and the name of the user invoking ssh-keysign.
In spite of ssh-keysign's restrictions on the contents of the host-based authentication data, there remains the ability of users to use it
as an avenue for obtaining the client's private host keys. For this reason host-based authentication is turned off by default.
See attributes(5) for descriptions of the following attributes:
+-----------------------------+-----------------------------+
| ATTRIBUTE TYPE | ATTRIBUTE VALUE |
+-----------------------------+-----------------------------+
|Availability |SUNWsshu |
+-----------------------------+-----------------------------+
|Interface Stability |Evolving |
+-----------------------------+-----------------------------+
ssh(1), sshd(1M), ssh_config(4), attributes(5)
AUTHORS
Markus Friedl, markus@openbsd.org
HISTORY
ssh-keysign first appeared in Ox 3.2.
9 Jun 2004 ssh-keysign(1M)