[PATCH] Introduce extra delay before closing unauthenticated sessions
Matt Johnston
matt at ucc.asn.au
Sun Jan 24 21:30:18 AWST 2021
On Wed 20/1/2021, at 8:15 pm, Thomas De Schampheleire <patrickdepinguin at gmail.com> wrote:
>
>> # HG changeset patch
>> Introduce extra delay before closing unauthenticated sessions
>
> Any comments on this patch?
>
Hi Thomas,
Sorry for the delay getting back to you. I've applied the patch, it seems like it could be good as a simple brute force countermeasure. I'm sure a lot of the SSH bots are using varying source IPs from botnets etc, but there doesn't seem much harm in an extra delay.
I'll add an option to disable it at runtime just in case it ends up causing problems (resource usage of waiting connections would be my concern).
Thanks,
Matt
More information about the Dropbear
mailing list