Displaying 1 result from an estimated 1 matches for "blacklist_expire".
2008 Jun 12
2
Request for added functionality - tracking and blocking attacks
...BLACKLIST_MAX_IP 10000
Allowing 4 bytes for the IP address plus 4 bytes for the time stamp, a
list of 10000 forbidden machines could be stored in only 80000 bytes.
An attacker might be able to fill the list, but only if they had
access to a network of 10000 machines.
6. After a configurable time
BLACKLIST_EXPIRE seconds
IP addresses which had not tried to login in more than the specified
time would be purged from this blacklist data structure. The purpose
of this is to prevent the list from filling up when sshd has been up
for months at a time.
7. sshd would continue to "service" login attempt...