Re: misc/18947 (ftpd lacks a per host limit of simultaneous connections)

To: misc-bug-people%netbsd.org@localhost,gnats-admin%netbsd.org@localhost,netbsd-bugs%netbsd.org@localhost,tecneeq%gmx.net@localhost
Subject: Re: misc/18947 (ftpd lacks a per host limit of simultaneous connections)
From: Elad Efrat <elad%NetBSD.org@localhost>
Date: Sun, 14 Mar 2010 22:10:09 +0000 (UTC)

The following reply was made to PR misc/18947; it has been noted by GNATS.

From: Elad Efrat <elad%NetBSD.org@localhost>
To: gnats-bugs%NetBSD.org@localhost
Cc: 
Subject: Re: misc/18947 (ftpd lacks a per host limit of simultaneous 
connections)
Date: Sun, 14 Mar 2010 18:07:46 -0400

 Matthew Mondor wrote:

 >  In a better world, it'd probably be possible to adapt all local daemons
 >  to support such policies by sharing a lightweight database daemon
 >  replacing or supplementing utmp and allowing sophisticated and
 >  efficient user WHO queries, internally using a library with a decent C
 >  API to also do queries from C... :)  But we don't currenty have this.

 Right, you want each program to have the ability to export events along
 with some data so that everything that happens on a system/network/etc.
 can be correlated and acted upon in a centralized way. It's an easy way
 to construct a big picture of what exactly is going on.

 Lacking such a mechanism, however, here's the cleanest way to "fix" such
 problems:

        http://www.openbsd.org/faq/pf/filter.html

 (See, e.g., "Stateful Tracking Options.")

 This PR should be closed.

 -e.

Prev by Date: Re: misc/18947 (ftpd lacks a per host limit of simultaneous connections)
Next by Date: Re: misc/18947 (ftpd lacks a per host limit of simultaneous connections)
Previous by Thread: Re: misc/18947 (ftpd lacks a per host limit of simultaneous connections)
Next by Thread: Re: misc/18947 (ftpd lacks a per host limit of simultaneous connections)
Indexes:

Home | Main Index | Thread Index | Old Index