James Litchfield wrote on 06/16/08 03:46 PM:
> Attempts to connect? Something else?
Ehm, according to sshd_config(4):
" MaxStartups
Specifies the maximum number of concurrent unauthenti-
cated connections to the sshd daemon. Additional
connections are dropped until authentication succeeds or
the LoginGraceTime expires for a connection. The default
is 10.
Alternatively, random early drop can be enabled by
specifying the three colon-separated values
start:rate:full (for example, 10:30:60). Referring to
this example, sshd refuse connection attempts with a
probability of rate/100 (30% in our example) if there
are currently 10 (from the start field) unauthenticated
connections. The probability increases linearly and all
connection attempts are refused if the number of unau-
thenticated connections reaches full (60 in our exam-
ple)."
~Iain
-------------- next part --------------
A non-text attachment was scrubbed...
Name: smime.p7s
Type: application/x-pkcs7-signature
Size: 6143 bytes
Desc: S/MIME Cryptographic Signature
URL:
<http://mail.opensolaris.org/pipermail/security-discuss/attachments/20080616/c6847f8b/attachment.bin>
