Advanced
Mailing List Archive

Mailing List Archive

  1. Home >
  2. OpenSSH>
  3. Bugs
[Bug 3197] New: reset X11 forward timeout
bugzilla-daemon at mindrot
Jul 27, 2020, 2:16 PM
Post #1 of 1 (136 views)
Permalink
https://bugzilla.mindrot.org/show_bug.cgi?id=3197

Bug ID: 3197
Summary: reset X11 forward timeout
Product: Portable OpenSSH
Version: 8.3p1
Hardware: All
OS: All
Status: NEW
Severity: enhancement
Priority: P5
Component: ssh
Assignee: unassigned-bugs@mindrot.org
Reporter: roland_wirth@web.de

Use case:
Over the course of a long-running SSH session, a user starts several
X11 programs. When the timeout is enabled, starting any X11 program
after the 20 minute mark fails, and the only option is to disconnect
and reconnect the SSH session. A work-around is to disable the timeout,
but that has security implications.

Enhancement:
Provide some way to reset the X11 forwarding, e.g., by having a new ~x
escape that resets the timeout and generates a new xauth cookie. With
the escape in place, the timeout window itself could be much shorter
than 20 minutes, reducing the window of opportunity for an attack.

--
You are receiving this mail because:
You are watching the assignee of the bug.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-bugs

©2024 GT.net. A Gossamer Threads company.
5th Floor, 455 Granville St., Vancouver, BC V6C 1T1, Canada | Legal