Chris Rapier
2024-Jun-27 16:55 UTC
An Analysis of the DHEat DoS Against SSH in Cloud Environments
On 6/26/24 7:56 AM, Joseph S. Testa II wrote:> On Wed, 2024-06-26 at 04:32 +0200, Thorsten Glaser wrote: >> If they get under attack, they?d better do. And if you?re ignoring >> a known bottleneck, the results will probably not be very useful? >> besides, not everyone is systemd-infested. > > > The primary responsibility falls on system designers to choose > reasonable default settings.I think it's really important to get this right. The problem, from my perspective, is that a large number of people are going to installing 9.8 via package updates. They're not going to look to closely at what has changed or what they might need to do differently. Sadly, this includes a lot of people that should know better. Just how it is though. If it wasn't that way we wouldn't need something to protect users against their own weak passwords. I think this is a good idea. I'm just concerned about unforeseen impacts.
Thorsten Glaser
2024-Jun-27 22:15 UTC
An Analysis of the DHEat DoS Against SSH in Cloud Environments
On Thu, 27 Jun 2024, Chris Rapier wrote:> I think it's really important to get this right. The problem, from myYes, but if the reason behaviour under DoS is that logging is too slow and/or uses too much CPU, the fix is not to remove logging in the default configuration. bye, //mirabilos -- Infrastrukturexperte ? Qvest Digital AG Am Dickobskreuz 10, D-53121 Bonn ? https://www.qvest-digital.com/ Telephon +49 228 54881-393 ? Fax: +49 228 54881-235 HRB AG Bonn 18196 ? USt-ID (VAT): DE274355441 Vorstand: Dr. Stefan Barth, Kai Ebenrett, Boris Esser, Alexander Steeg Vorsitzender Aufsichtsrat: Peter N?then
Seemingly Similar Threads
- An Analysis of the DHEat DoS Against SSH in Cloud Environments
- An Analysis of the DHEat DoS Against SSH in Cloud Environments
- sftp 'Couldn't execute "bash"' lls error
- Question about stderr output containing carriage return External
- An Analysis of the DHEat DoS Against SSH in Cloud Environments