Detect PID of sshd processes used by one public key; detect -R allocated port on the server

Alex Bligh alex at
Sun Oct 9 00:20:09 EST 2011

--On 8 October 2011 08:06:59 -0400 Stephen Harris <lists at> wrote:

>> no-agent-forwarding,command="/bin/true",no-pty,no-user-rc,no-X11-forward
>> ing,permitopen=""
>> But there seems to be no way to get the PIDs of an ssh process associated
>> with a particular public key, as opposed to a particular user.
> Instead of command="/bin/true" use command="/path/to/script".  The script
> can look at parent processes and work up the tree until it reaches the
> sshd process.

(I hope you don't mind me sending the reply to the list)

This strategy does not work for two reasons:

1. when -N is used, command= / ForceCommand is not executed. It only forces
   running of a command when there is either an interactive session
   requested or a command on the command line.

2. (less of an issue), the user's shell can no longer be /bin/false; it has
   to be a real shell.

Alex Bligh

More information about the openssh-unix-dev mailing list