Scott wrote: > Hello, > > $ grep 'MaxSessions' /etc/ssh/sshd_config > MaxSessions 2 > > But I can log into a box with at least 5 sessions (I stopped trying at > that point).
You probably did launch 5 independant ssh connections, not 5 sessions using the same connection. MaxSessions is the maximum number of sessions a user can use in a single connection, using multiplexing (see ControlMaster, ControlPath). Look again at the definition of MaxSessions, it is talking about network connections, not network address. > My question: > Is 'Match' used as a further refinement to any of the rules listed in > the keywords section (see last paragraph above), or is it required in > order to use one of those keywords? If the former is true, then I > don't understand why my setting doesn't seem to work. If it's the > latter, then I know I've omitted something. No, you don't *need* Match to apply those keywords. I think you want firewall level features (hint : max-src-conn).