Hacker News new | ask | show | jobs
by runnerup 1149 days ago
Curious if this could work to minimize 2FA authentications for repeated short SSH sessions? Particularly ssh commands run by 3rd party software such as Sourcetree. Every new connection requires acknowledgement of 2FA push notification.
2 comments
ogsuspect 1148 days ago
See ClashTheBunny's comment about Control sockets. You can `man 5 ssh-config` and search for the following settings 'ControlMaster', 'ControlPath', 'ControlPersist'. ControlMaster is a yes/no/auto... you probably want 'auto'. ControlPath is the path where the control socket is created. You probably want something dynamic like `ControlPath ~/.ssh/ctrl-%h`. ControlPersist specifies how long the control socket should remain open for. This enables SSH connection multiplexing.
link
ClashTheBunny 1148 days ago
I think you want multiplexing:

https://en.m.wikibooks.org/wiki/OpenSSH/Cookbook/Multiplexin...

It creates a control socket that lasts up to x minutes after your last session closes, so for me, all day + 15 minutes, which then new connections go over instead of re-athenticating.

Many places disable it for "security" reasons.

link