Re: misc/18947 (ftpd lacks a per host limit of simultaneous connections)

To: misc-bug-people%netbsd.org@localhost,gnats-admin%netbsd.org@localhost,netbsd-bugs%netbsd.org@localhost,tecneeq%gmx.net@localhost
Subject: Re: misc/18947 (ftpd lacks a per host limit of simultaneous connections)
From: Karsten Kruse <tecneeq%tecneeq.de@localhost>
Date: Sun, 14 Mar 2010 16:45:02 +0000 (UTC)

The following reply was made to PR misc/18947; it has been noted by GNATS.

From: Karsten Kruse <tecneeq%tecneeq.de@localhost>
To: gnats-bugs%NetBSD.org@localhost
Cc: 
Subject: Re: misc/18947 (ftpd lacks a per host limit of simultaneous 
connections)
Date: Sun, 14 Mar 2010 17:43:49 +0100

 Am 01.03.2010 03:20, schrieb Matthew Mondor:

 >   I assume that this PR is about the lack of per-address limits?

 Yes, that's what i meant. A single ip could use all possible connections 
 for a userclass. Wich in fact is what happens with some of the more 
 aggressive ftp-clients. They often open 4, 6, 8 or even more connections 
 to get a file (or rather parts of it). This isn't meant to harm, but it 
 does.

 Imagine Joe Greedy would open 30 anon connections to get a single file, 
 and you have 30 connections as a limit in the anon userclass. Nobody 
 else in his class could get files. A per host limit should solve that.

 Something like ,,Allow only 5 anon class connections from a single ip''.

 Karsten

 -- 

    ()    Impassivity is a state of indifference or apathy demonstrated
   <\/>   by the absence or suppression of emotional reactions such as
   _/\_   concern, excitement, motivation and passion.

Prev by Date: kern/42970: Compile Realtek 8185 wireless driver error
Next by Date: port-mac68k/42972: port-mac68k 5.0.2 crashes on a Mac IIsi
Previous by Thread: Re: misc/18947 (ftpd lacks a per host limit of simultaneous connections)
Next by Thread: Re: misc/18947 (ftpd lacks a per host limit of simultaneous connections)
Indexes:

Home | Main Index | Thread Index | Old Index