Date: Sun, 5 Dec 1999 13:42:56 -0500 (EST) From: Brian Fundakowski Feldman <green@FreeBSD.org> To: security@FreeBSD.org Cc: markus@OpenBSD.org Subject: Please review: OpenSSH rate-limiting Message-ID: <Pine.BSF.4.10.9912051333520.52027-100000@green.dyndns.org>
next in thread | raw e-mail | index | archive | help
In order to prevent DoS attacks from increasing system load, I've added a "ConnectionsPerPeriod" setting to OpenSSH's sshd(8). I've now updated the documentation, changed the sample configuration file to use a LoginGraceTime of 1 minute and ConnectionsPerPeriod setting of 5 connections per 10 seconds, in addition to the actual code which implements the rate-limiting. If there are no obstructing objections, I'd like to commit it to the OpenSSH port. Diffs relative to the current OpenSSH port can be found at http://www.FreeBSD.org/~green/openssh.connectionsperperiod.patch MD5 (openssh.connectionsperperiod.patch) = f42429503f29c073e3e5a835e95d8b02 Thanks in advance! -- Brian Fundakowski Feldman \ FreeBSD: The Power to Serve! / green@FreeBSD.org `------------------------------' To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.10.9912051333520.52027-100000>