Subject: misc/18947: ftpd lacks a per host limit
To: None <>
From: None <>
List: netbsd-bugs
Date: 11/06/2002 00:21:23
>Number:         18947
>Category:       misc
>Synopsis:       ftpd lacks a per host limit of simultaneous connections
>Confidential:   no
>Severity:       non-critical
>Priority:       medium
>Responsible:    misc-bug-people
>State:          open
>Class:          sw-bug
>Submitter-Id:   net
>Arrival-Date:   Tue Nov 05 15:23:00 PST 2002
>Originator:     Karsten Kruse
>Release:        NetBSD 1.6_STABLE
System: NetBSD uberhost 1.6_STABLE NetBSD 1.6_STABLE (uberhost) #3: Sun Nov 3 12:08:57 CET 2002 karsten@uberhost:/usr/src/sys/arch/i386/compile/uberhost i386
Architecture: i386
Machine: i386

  NetBSD's ftpd lacks a per limit of simultneuous connections. For example
  something like this in /etc/ftpd.conf:

    # limitperhost   class   simultaneous-connections
    limitperhost     anons   1

  For class anons allow only one connections per host. This would also
  be a small protection against simple DoS.