Date: Sat, 5 Jan 2002 23:34:57 +0200 From: "Dave Raven" <dave@raven.za.net> To: "Kevin Kinsey" <k_a_kinsey@netzero.net>, <freebsd-security@FreeBSD.ORG> Subject: Re: Repost: txt only: maxstartups in sshd_config Message-ID: <009101c19630$d443e320$3800a8c0@DAVE> References: <035701c19626$032a1de0$6af25b41@daleco>
next in thread | previous in thread | raw e-mail | index | archive | help
Thats a rather odd setting. It would allow 4 connections, then drop 50% of the new ones until it reaches 25. Then stop accepting. It is good to prevent any attempts at some sort of denial of service attack. All logins are treated the same; so you would be locked out. But would you not be locked out if someone managed to crash your box with a ton of ssh connections? ----- Original Message ----- From: "Kevin Kinsey" <k_a_kinsey@netzero.net> To: <freebsd-security@FreeBSD.ORG> Sent: Saturday, January 05, 2002 10:17 PM Subject: Repost: txt only: maxstartups in sshd_config > Sorry, upgraded<?> M$ OE last night and forgot > to tell it txt only when dealing with freebsd.org.... > > ----- Original Message ----- > From: Kevin Kinsey > To: freebsd-security@freebsd.org > Sent: Saturday, January 05, 2002 2:14 PM > Subject: maxstartups in sshd_config > > > Considering setting mentioned variable more > in the neighborhood of 4:50:25. > > However, questions that occurs is, is someone > is trying to login in w/o authorization, wouldn't > the daemon treat my login attempts in the same > way? How likely would I be to have trouble logging > in if I set this to this value? > > Also, what am I not thinking of, and is there > really any benefit anyway? > > TIA, Kevin Kinsey > > ---------------------------------------------------- > Sign Up for NetZero Platinum Today > Only $9.95 per month! > http://my.netzero.net/s/signup?r=platinum&refcd=PT97 > > To Unsubscribe: send mail to majordomo@FreeBSD.org > with "unsubscribe freebsd-security" in the body of the message To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?009101c19630$d443e320$3800a8c0>