Date: Mon, 4 Dec 2000 16:49:32 -0800 (PST) From: Matt Dillon <dillon@earth.backplane.com> To: "David G. Andersen" <dga@pobox.com> Cc: JHowie@msn.com (John Howie), freebsd-security@FreeBSD.ORG Subject: Re: Fw: NAPTHA Advisory Updated - BindView RAZOR Message-ID: <200012050049.eB50nWg78677@earth.backplane.com> References: <200012050043.RAA27046@faith.cs.utah.edu>
next in thread | previous in thread | raw e-mail | index | archive | help
:This isn't a FreeBSD failure per se, but a resource control :failure. Whether you want to point a finger at FreeBSD, ssh, or the :operator of the box is entirely up to you. :-) : I was under the impression that you could limit ssh's connection acceptance rate in sshd_config. # Rate-limit sshd connections to 5 connections per 10 seconds ConnectionsPerPeriod 5/10 Not only that, but it's turned on by default. You can also do the same thing with services run from inetd with appropriate options to inetd. It isn't perfect, but it should be sufficient. -Matt To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-security" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200012050049.eB50nWg78677>