Bug 3197

Summary: reset X11 forward timeout
Product: Portable OpenSSH Reporter: Roland Wirth <roland_wirth>
Component: sshAssignee: Assigned to nobody <unassigned-bugs>
Status: NEW ---    
Severity: enhancement    
Priority: P5    
Version: 8.3p1   
Hardware: All   
OS: All   

Description Roland Wirth 2020-07-28 07:16:42 AEST 
Use case:
Over the course of a long-running SSH session, a user starts several X11 programs. When the timeout is enabled, starting any X11 program after the 20 minute mark fails, and the only option is to disconnect and reconnect the SSH session. A work-around is to disable the timeout, but that has security implications.

Enhancement:
Provide some way to reset the X11 forwarding, e.g., by having a new ~x escape that resets the timeout and generates a new xauth cookie. With the escape in place, the timeout window itself could be much shorter than 20 minutes, reducing the window of opportunity for an attack.