Various keepalive extensions

Add compatibility aliases for ProtocolKeepAlives and SetupTimeOut, supported in previous versions of Debian's OpenSSH package but since superseded by ServerAliveInterval. (We're probably stuck with this bit for compatibility.) In batch mode, default ServerAliveInterval to five minutes. Adjust documentation to match and to give some more advice on use of keepalives. Author: Ian Jackson <ian@chiark.greenend.org.uk> Author: Matthew Vernon <matthew@debian.org> Author: Colin Watson <cjwatson@debian.org> Last-Update: 2013-09-14 Patch-Name: keepalive-extensions.patch
author: Richard Kettlewell <rjk@greenend.org.uk> 2014-02-09 16:09:52 +0000
committer: Colin Watson <cjwatson@debian.org> 2014-02-10 02:40:15 +0000
commit: 043f937820e1152df2c8416f37e6c8d923fc1811 (patch)
tree: 99b263192c6e897f9365f653acdcd65d6283791d /ssh_config.5
parent: 9f42d3b964854aecfed2fff64ac375c0c4805fa5 (diff)
1 files changed, 19 insertions, 2 deletions
diff --git a/ssh_config.5 b/ssh_config.5
index 617a312d0..b3c5dc614 100644
--- a/ssh_config.5
+++ b/ssh_config.5
@@ -205,8 +205,12 @@ Valid arguments are
 If set to
 .Dq yes ,
 passphrase/password querying will be disabled.
+In addition, the
+.Cm ServerAliveInterval
+option will be set to 300 seconds by default.
 This option is useful in scripts and other batch jobs where no user
-is present to supply the password.
+is present to supply the password,
+and where it is desirable to detect a broken network swiftly.
 The argument must be
 .Dq yes
 or
@@ -1299,8 +1303,15 @@ from the server,
 will send a message through the encrypted
 channel to request a response from the server.
 The default
-is 0, indicating that these messages will not be sent to the server.
+is 0, indicating that these messages will not be sent to the server,
+or 300 if the
+.Cm BatchMode
+option is set.
 This option applies to protocol version 2 only.
+.Cm ProtocolKeepAlives
+and
+.Cm SetupTimeOut
+are Debian-specific compatibility aliases for this option.
 .It Cm StrictHostKeyChecking
 If this flag is set to
 .Dq yes ,
@@ -1339,6 +1350,12 @@ Specifies whether the system should send TCP keepalive messages to the
 other side.
 If they are sent, death of the connection or crash of one
 of the machines will be properly noticed.
+This option only uses TCP keepalives (as opposed to using ssh level
+keepalives), so takes a long time to notice when the connection dies.
+As such, you probably want
+the
+.Cm ServerAliveInterval
+option as well.
 However, this means that
 connections will die if the route is down temporarily, and some people
 find it annoying.
author	Richard Kettlewell <rjk@greenend.org.uk>	2014-02-09 16:09:52 +0000
committer	Colin Watson <cjwatson@debian.org>	2014-02-10 02:40:15 +0000
commit	043f937820e1152df2c8416f37e6c8d923fc1811 (patch)
tree	99b263192c6e897f9365f653acdcd65d6283791d /ssh_config.5
parent	9f42d3b964854aecfed2fff64ac375c0c4805fa5 (diff)

diff --git a/ssh_config.5 b/ssh_config.5 index 617a312d0..b3c5dc614 100644 --- a/ssh_config.5 +++ b/ssh_config.5
@@ -205,8 +205,12 @@ Valid arguments are
205	If set to	205	If set to
206	.Dq yes ,	206	.Dq yes ,
207	passphrase/password querying will be disabled.	207	passphrase/password querying will be disabled.
		208	In addition, the
		209	.Cm ServerAliveInterval
		210	option will be set to 300 seconds by default.
208	This option is useful in scripts and other batch jobs where no user	211	This option is useful in scripts and other batch jobs where no user
209	is present to supply the password.	212	is present to supply the password,
		213	and where it is desirable to detect a broken network swiftly.
210	The argument must be	214	The argument must be
211	.Dq yes	215	.Dq yes
212	or	216	or
@@ -1299,8 +1303,15 @@ from the server,
1299	will send a message through the encrypted	1303	will send a message through the encrypted
1300	channel to request a response from the server.	1304	channel to request a response from the server.
1301	The default	1305	The default
1302	is 0, indicating that these messages will not be sent to the server.	1306	is 0, indicating that these messages will not be sent to the server,
		1307	or 300 if the
		1308	.Cm BatchMode
		1309	option is set.
1303	This option applies to protocol version 2 only.	1310	This option applies to protocol version 2 only.
		1311	.Cm ProtocolKeepAlives
		1312	and
		1313	.Cm SetupTimeOut
		1314	are Debian-specific compatibility aliases for this option.
1304	.It Cm StrictHostKeyChecking	1315	.It Cm StrictHostKeyChecking
1305	If this flag is set to	1316	If this flag is set to
1306	.Dq yes ,	1317	.Dq yes ,
@@ -1339,6 +1350,12 @@ Specifies whether the system should send TCP keepalive messages to the
1339	other side.	1350	other side.
1340	If they are sent, death of the connection or crash of one	1351	If they are sent, death of the connection or crash of one
1341	of the machines will be properly noticed.	1352	of the machines will be properly noticed.
		1353	This option only uses TCP keepalives (as opposed to using ssh level
		1354	keepalives), so takes a long time to notice when the connection dies.
		1355	As such, you probably want
		1356	the
		1357	.Cm ServerAliveInterval
		1358	option as well.
1342	However, this means that	1359	However, this means that
1343	connections will die if the route is down temporarily, and some people	1360	connections will die if the route is down temporarily, and some people
1344	find it annoying.	1361	find it annoying.