bash $TMOUT
Chuck Anderson
cra at WPI.EDU
Thu Jul 24 00:48:14 UTC 2008
On Wed, Jul 23, 2008 at 07:44:25PM -0500, Mike McGrath wrote:
> The idea is more to ensure that sessions aren't just left open for someone
> to come upon and mess with. 6 days is a long time to have been logged in
> especially in idle. Means there's a shell who knows where protected by
> who knows what. I'd hate for someone to start a screen session on their
> remote machine, ssh into ours, and just leave it there for days having
> their machine get hacked, someone attaching to that screen session.
>
> Just one such example of an attack, the more obvious is having company
> over for the night, "mind if I use your computer?" sort of thing, or in a
> dorm room, or who knows what. Its not complete protection, but I think
> its a good first step.
Ok. I wonder if there is a way to launch "vlock" or similar instead
of just forcing an autologout then?
More information about the infrastructure
mailing list