Date: Mon, 4 Dec 2000 16:49:32 -0800 (PST) From: Matt Dillon <dillon@earth.backplane.com> To: "David G. Andersen" <dga@pobox.com> Cc: JHowie@msn.com (John Howie), freebsd-security@FreeBSD.ORG Subject: Re: Fw: NAPTHA Advisory Updated - BindView RAZOR Message-ID: <200012050049.eB50nWg78677@earth.backplane.com> References: <200012050043.RAA27046@faith.cs.utah.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
:This isn't a FreeBSD failure per se, but a resource control
:failure. Whether you want to point a finger at FreeBSD, ssh, or the
:operator of the box is entirely up to you. :-)
:
I was under the impression that you could limit ssh's connection
acceptance rate in sshd_config.
# Rate-limit sshd connections to 5 connections per 10 seconds
ConnectionsPerPeriod 5/10
Not only that, but it's turned on by default.
You can also do the same thing with services run from inetd with
appropriate options to inetd. It isn't perfect, but it should be
sufficient.
-Matt
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200012050049.eB50nWg78677>