upstream: mention that PerSourcePenalties don't affect concurrent
in-progress connections. OpenBSD-Commit-ID: 20389da6264f2c97ac3463edfaa1182c212d420c
This commit is contained in:
djm@openbsd.org
Damien Miller
parent
9774b93857
commit
bd1f74741d
|
|
@ -33,7 +33,7 @@
|
||||||
.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
|
.\" (INCLUDING NEGLIGENCE OR OTHERWISE) ARISING IN ANY WAY OUT OF THE USE OF
|
||||||
.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
.\" THIS SOFTWARE, EVEN IF ADVISED OF THE POSSIBILITY OF SUCH DAMAGE.
|
||||||
.\"
|
.\"
|
||||||
.\" $OpenBSD: sshd_config.5,v 1.356 2024/06/06 17:15:25 djm Exp $
|
.\" $OpenBSD: sshd_config.5,v 1.357 2024/06/06 20:20:42 djm Exp $
|
||||||
.Dd $Mdocdate: June 6 2024 $
|
.Dd $Mdocdate: June 6 2024 $
|
||||||
.Dt SSHD_CONFIG 5
|
.Dt SSHD_CONFIG 5
|
||||||
.Os
|
.Os
|
||||||
|
|
@ -1564,8 +1564,9 @@ If a penalty is enforced against a client then its source address and any
|
||||||
others in the
|
others in the
|
||||||
.Cm PerSourceNetBlockSize
|
.Cm PerSourceNetBlockSize
|
||||||
will be refused connection for a period.
|
will be refused connection for a period.
|
||||||
Multiple penalties from the same source from concurrent connections will
|
A penalty doesn't affect concurrent connections in progress, but multiple
|
||||||
accumulate up to a maximum.
|
penalties from the same source from concurrent connections will accumulate
|
||||||
|
up to a maximum.
|
||||||
Conversely, penalties are not applied until a minimum threshold time has been
|
Conversely, penalties are not applied until a minimum threshold time has been
|
||||||
accumulated.
|
accumulated.
|
||||||
Penalties are off by default but may be enabled using default settings using the
|
Penalties are off by default but may be enabled using default settings using the
|
||||||
|
|
|
||||||
Loading…
Reference in New Issue