"[L]ook at those folds!" I'm looking at the folds, and they got worse.
And take the cover of the Lorsch Gospels: the misshapen fingers, the bulging eyes, the blank expressions -- this is crude, not stylized. You get the sense that art is devolving back to the "archaic smile".
This variable can also be set in tmux and gnu screen. People usually figure out fairly quick how to bypass the timer but it is handy when people console into servers via the drac/ilo and forget to log out. Some shells don't do anything with TMOUT so a bastion must only have vetted shells.
You are correct. This is widely copy/pasted bad advice and does the exact opposite of what the comment says.
It is not an idle timeout logout at all. Instead, it causes sshd to periodically send probes to the client. This has a couple of effects, most notably keeping tcp sessions "active" and frequently exchanging packets (this can be useful to keep connections through statefull firewalls alive if you are genuinely idle), and to rapidly detect and disconnect a client that has actually gone away.
I think the origin of this incorrect description is the CIS documents. They have the exact same gross mistake in them.
I think the ClientAlive probes are useful and should be on, but it's definitely not an "idle logout" as claimed.
