openssh bugs - Dec 2007 - [Bug 1401] New: ssh does not remove staled credentials from .Xauthority

https://bugzilla.mindrot.org/show_bug.cgi?id=1401

           Summary: ssh does not remove staled credentials from .Xauthority
    Classification: Unclassified
           Product: Portable OpenSSH
           Version: 4.7p1
          Platform: All
        OS/Version: Linux
            Status: NEW
          Severity: normal
          Priority: P2
         Component: ssh
        AssignedTo: bitbucket at mindrot.org
        ReportedBy: anicka at suse.cz


Created an attachment (id=1395)
 --> (http://bugzilla.mindrot.org/attachment.cgi?id=1395)
patch for removing staled credentials in .Xauthority

ssh does not remove its entries in xauthority file and makes it grow.
Lookup in too big a file might take lots of time, especially when the
machine is not connected to the Internet or if the file stores
hostnames that do not exist any more.

There are probably many ways how to fix this issue. I am attaching a
patch for openssh 4.7p1 we are using in openSUSE, that attempts to
address it.

-- 
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.

https://bugzilla.mindrot.org/show_bug.cgi?id=1401


Damien Miller <djm at mindrot.org> changed:

           What    |Removed                     |Added
----------------------------------------------------------------------------
                 CC|                            |djm at mindrot.org




--- Comment #1 from Damien Miller <djm at mindrot.org>  2008-01-20
11:52:41 ---
How does this work with session multiplexing? Wouldn't it be better to
remove the creds once, when the server is finally closing?

-- 
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.

https://bugzilla.mindrot.org/show_bug.cgi?id=1401





--- Comment #2 from Anicka Bernathova <anicka at suse.cz>  2008-01-30
08:42:03 ---
It works with session multiplexing, at least as far as I have tested
it. 

And as far as I understand it, it is done correctly, because every
session, even the multiplexed one, does its X forwarding on its own.

-- 
Configure bugmail: https://bugzilla.mindrot.org/userprefs.cgi?tab=email
------- You are receiving this mail because: -------
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.