[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]
bug#36364: Potential SSH session exhaustion
|
From: |
Jakob L. Kreuze |
|
Subject: |
bug#36364: Potential SSH session exhaustion |
|
Date: |
Mon, 24 Jun 2019 19:28:28 -0400 |
|
User-agent: |
Gnus/5.13 (Gnus v5.13) Emacs/26.2 (gnu/linux) |
Hi,
Ludovic Courtès <address@hidden> writes:
> Procedures like ‘send-files’ call ‘channel-get-exit-status’ and
> ‘close-port’ on ports that represent SSH channels.
>
> AFAICS, ‘close-port’ triggers a call of ‘ptob_close’ in Guile-SSH,
> which in turn calls ‘ssh_channel_close’.
>
> sshd_config(5) says:
>
> MaxSessions Specifies the maximum number of open shell, login or subsystem
> (e.g. sftp) sessions permitted per network connection. Multiple sessions may
> be
> established by clients that support connection multiplexing. Setting
> MaxSessions
> to 1 will effectively disable session multiplexing, whereas setting it to 0
> will
> prevent all shell, login and subsystem sessions while still permitting
> forwarding. The default is 10.
>
> So you must be hitting this limit.
Ah, thank you for the corrections :)
> I see that ‘remote-eval’ does not close ‘remote’ though, so this
> channel port remains open until it’s GC’d, which happens too late.
> Could you try the attached patch? It allows me to do more than 10
> ‘remote-eval’ calls in a row.
Wow, that was quick. The patch works like a charm, thanks!
Regards,
Jakob
signature.asc
Description: PGP signature