Re: Idle session logout

From: lonely wolf (wolfy_at_nobugconsulting.ro)
Date: 10/25/04

  • Next message: Danny Kitts: "RE: Idle session logout" 
    Date: Mon, 25 Oct 2004 23:04:47 +0300
To: focus-linux@securityfocus.com

    Andy Smith wrote:
    > Sanjeev B.S. wrote:
    >
    >>> try to set TMOUT=<seconds> in /etc/profile.
    >>
    >>
    >>
    >> TMOUT works only for bash shell users, isn't it? May be running a
    >> simple shell script with kill -9 that checks with 'finger foo',
    >> grepping idle time, might be a good idea. First get the pts, say
    >> 'pts/2', then check it with ps -ef | grep 'pts/2'. Then decide whether
    >> to for logout.
    >>
    >
    > This solution would require the finger deamon to be running which just
    > opens another can of security worms :-)
    in linux, finger can be used on a local system without running the daemon
    [wolfy@wolfy2 wolfy]$ netstat -atup|grep LISTEN
    (Not all processes could be identified, non-owned process info
      will not be shown, you would have to be root to see it all.)
    tcp 0 0 *:5800 *:* LISTEN 1032/kdeinit: kded
    tcp 0 0 *:5900 *:* LISTEN 1032/kdeinit: kded
    tcp 0 0 *:x11 *:* LISTEN -
    tcp 0 0 *:ssh *:* LISTEN -
    [wolfy@wolfy2 wolfy]$ finger wolfy
    Login: wolfy Name: (null)
    Directory: /home/wolfy Shell: /bin/bash
    On since Mon Oct 25 21:50 (EEST) on pts/0 1 hour 12 minutes idle
    On since Mon Oct 25 23:00 (EEST) on pts/1 2 minutes 6 seconds idle
          (messages off)
    On since Mon Oct 25 23:01 (EEST) on pts/2 (messages off)
    No mail.
    No Plan.

  • Next message: Danny Kitts: "RE: Idle session logout"