Subject: Re: inetd limits
To: None <>
From: Tomas Svensson <>
List: tech-net
Date: 12/26/2001 02:54:11
I submitted a patch for this last week, if anyone wants to take a look
at it:


>> How about adding a concurrency limit in inetd so that only a
>> specified number of simultaneous invocations of each service may be
>> started?

dM> Seems to be to me _asking_ for a DoS attack (though I suppose such
dM> attacks are possible anyway).

dM> Nothing wrong with making the capability available, though.

>> And ofcourse change the wait/nowait[:max] parameter in inetd.conf to
>> wait/nowait[:max-rate][:max-child].

dM> This is ambiguous; I'd recommend wait/nowait[:[max-rate][:max-child]],
dM> or perhaps wait/nowait[:[var=value[,var=value[,var=value...]]]] with
dM> bare :number supported for compatability; the :number:number is not
dM> very extensible.