openssh is not processing the sshd RekeyLimit option correctly

Solution Verified - Updated -

Issue

  • When configuring the RekeyLimit SSHD option for time-based rekeyring and configuring ClientAliveInterval to a non-zero value and ClientAliveCountMax to zero, client SSH session gets abruptly closed during first rekeyring

    # egrep "ClientAliveInterval|ClientAliveCountMax|RekeyLimit" /etc/ssh/sshd_config
    RekeyLimit default 60s
    ClientAliveInterval 120
    ClientAliveCountMax 0
    

Environment

  • Red Hat Enterprise Linux (RHEL) 7
  • OpenSSH 7.4 (e.g. openssh-7.4p1-11)

Subscriber exclusive content

A Red Hat subscription provides unlimited access to our knowledgebase of over 48,000 articles and solutions.

Current Customers and Partners

Log in for full access

Log In