From 3542a1f5341af722b411d6c582099c95153aea98 Mon Sep 17 00:00:00 2001
From: Matthieu DERASSE <git@derasse.fr>
Date: Wed, 25 May 2016 00:06:45 +0200
Subject: [PATCH] Implement Session idle time out

---
 openssh/files/sshd_config | 4 ++++
 pillar.example            | 2 ++
 2 files changed, 6 insertions(+)

diff --git a/openssh/files/sshd_config b/openssh/files/sshd_config
index 62ce97b..75df57d 100644
--- a/openssh/files/sshd_config
+++ b/openssh/files/sshd_config
@@ -66,6 +66,10 @@
 {{ option_default_uncommented('SyslogFacility', 'AUTH') }}
 {{ option_default_uncommented('LogLevel', 'INFO') }}
 
+# Session idle time out
+{{ option_default_uncommented('ClientAliveInterval', 0) }}
+{{ option_default_uncommented('ClientAliveCountMax', 3) }}
+
 # Authentication:
 {{ option_default_uncommented('LoginGraceTime', 120) }}
 {{ option_default_uncommented('PermitRootLogin', 'yes') }}
diff --git a/pillar.example b/pillar.example
index 4895add..d678fde 100644
--- a/pillar.example
+++ b/pillar.example
@@ -11,6 +11,8 @@ sshd_config:
   ServerKeyBits: 768
   SyslogFacility: AUTH
   LogLevel: INFO
+  ClientAliveInterval: 0
+  ClientAliveCountMax: 3
   LoginGraceTime: 120
   PermitRootLogin: 'yes'
   PasswordAuthentication: 'no'