Date: Mon, 27 Oct 1997 19:30:47 +0100 (MET) From: Guido van Rooij <guido@gvr.org> To: tom@uniserve.com (Tom) Cc: nate@mt.sri.com, ache@FreeBSD.ORG, cvs-committers@FreeBSD.ORG, cvs-all@FreeBSD.ORG, cvs-etc@FreeBSD.ORG Subject: Re: cvs commit: src/etc master.passwd Message-ID: <199710271830.TAA02054@gvr.gvr.org> In-Reply-To: <Pine.BSF.3.96.971027093542.11950A-100000@shell.uniserve.com> from Tom at "Oct 27, 97 09:39:16 am"
next in thread | previous in thread | raw e-mail | index | archive | help
> > A problem with fingerd is that is does fuzzy lookups by default. If > /etc/master.passwd is large, it will use a significant amount of CPU. > Starting up 30-40 fingerds makes an easy and effective DoS attack. I had > this happen to me. I now use xinetd to limit the number of simultaneous > fingerd's, but an effective login class would be good too. You don;t need xinetd to do that; our inetd has the same possibilities. -Guido
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?199710271830.TAA02054>