[27226] in Athena Bugs
sshd leaving junk in file system
daemon@ATHENA.MIT.EDU (Ken Raeburn)
Mon Sep 8 15:22:15 2008
Message-Id: <6BE5E2F5-94DF-48B6-8338-F7AC510A157E@MIT.EDU>
From: Ken Raeburn <raeburn@mit.edu>
To: bugs@mit.edu
Content-Type: text/plain; charset=US-ASCII; format=flowed; delsp=yes
Content-Transfer-Encoding: 7bit
Mime-Version: 1.0 (Apple Message framework v928.1)
Date: Mon, 8 Sep 2008 15:21:58 -0400
X-Spam-Flag: NO
X-Spam-Score: 0.00
Errors-To: bugs-bounces@mit.edu
I ran into an annoyance with ssh into svn.mit.edu over the weekend.
It appears that even when I'm not forwarding X connections, the server
(at least, if it's configured to permit X forwarding) will still do
its xauth thing, and after a large number of connections (e.g., "svk
sync" of an entire repository) it starts duplicating some pathnames:
% ssh svn.mit.edu -o "ForwardX11 no" svnserve -t
Could not create xauth directory /tmp/xauth-raeburn-12218: File exists
Disabling X forwarding.
( success ( 1 2 ( ANONYMOUS EXTERNAL ) ( edit-pipeline ) ) )
%
Now, drugstore (svn) is only running Athena 9.1.27, but I also see
xauth directory creation happening on a 9.4.48 machine in my office.
$ ssh -o "ForwardX11 no" a1 printenv XAUTHORITY
/tmp/xauth-raeburn-16525/Xauthority
$ ssh -o "ForwardX11 no" a1 ls -la '${XAUTHORITY:h}'
total 20
drwx------ 2 raeburn mit 4096 Sep 8 15:19 .
drwxrwxrwt 405 root root 16384 Sep 8 15:19 ..
$
It also appears that the forwarded credentials are not deleted when
the connection closes. I'm not sure if that's a bug, or intended
behavior (for jobs left running in background?). I probably don't
actually need to forward credentials, but still, if I do it, I think
they should probably be cleaned up.
After some svn stuff this weekend, /tmp/ was full of crap: 24348
directories named xauth-raeburn-*, all empty, and 57195 files named
krb5cc_7882_*.
Ken
