Mailing List Archive

[Bug 3055] Need some high-probability logging re MaxStartups
https://bugzilla.mindrot.org/show_bug.cgi?id=3055

Damien Miller <djm@mindrot.org> changed:

What |Removed |Added
----------------------------------------------------------------------------
Status|NEW |ASSIGNED
CC| |djm@mindrot.org,
| |dtucker@dtucker.net
Assignee|unassigned-bugs@mindrot.org |djm@mindrot.org
Attachment #3394| |ok?(dtucker@dtucker.net)
Flags| |

--- Comment #1 from Damien Miller <djm@mindrot.org> ---
Created attachment 3394
--> https://bugzilla.mindrot.org/attachment.cgi?id=3394&action=edit
better logging for MaxStartups throttling

This implements better logging of MaxStartups.

When MaxStartups is first hit, sshd will log this and the four-tuple
for the offending connection.

Add periodic logging (every 5 minutes) while in MaxStartups that
includes how long the condition has been in effect, the number of
connections dropped and the most recent offending connection.

Log when MaxStartups was exited too. This is defined by the number of
active pre-auth connections falling to two below the threshold.

Hopefully this isn't too noisy, otherwise we might need to add
time-based hysteresis for the exit case too.

--
You are receiving this mail because:
You are watching someone on the CC list of the bug.
You are watching the assignee of the bug.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-bugs
[Bug 3055] Need some high-probability logging re MaxStartups [ In reply to ]
https://bugzilla.mindrot.org/show_bug.cgi?id=3055

Damien Miller <djm@mindrot.org> changed:

What |Removed |Added
----------------------------------------------------------------------------
Attachment #3394|0 |1
is obsolete| |
Attachment #3394|ok?(dtucker@dtucker.net) |
Flags| |
Attachment #3395| |ok?(dtucker@dtucker.net)
Flags| |

--- Comment #2 from Damien Miller <djm@mindrot.org> ---
Created attachment 3395
--> https://bugzilla.mindrot.org/attachment.cgi?id=3395&action=edit
Better MaxStartups logging v2

Previous diff was missing a couple of files.

--
You are receiving this mail because:
You are watching the assignee of the bug.
You are watching someone on the CC list of the bug.
_______________________________________________
openssh-bugs mailing list
openssh-bugs@mindrot.org
https://lists.mindrot.org/mailman/listinfo/openssh-bugs