[prev in list] [next in list] [prev in thread] [next in thread]
List: busybox
Subject: Re: [PATCH] telnetd max active sessions
From: "Roberto A. Foglietta" <roberto.foglietta () gmail ! com>
Date: 2007-11-30 9:25:45
Message-ID: e4c675870711300125j70da2f59k8ed6046781a72232 () mail ! gmail ! com
[Download RAW message or body]
2007/11/30, Denys Vlasenko <vda.linux@googlemail.com>:
> On Thursday 29 November 2007 00:28, Roberto A. Foglietta wrote:
> > 2007/11/28, Denys Vlasenko <vda.linux@googlemail.com>:
> > > On Tuesday 27 November 2007 05:30, Roberto A. Foglietta wrote:
> > > > Hi,
> > > >
> > > > in order to limit the max number of telnetd accpeted sessions apply
> > > > this patch.
> > >
> > > Instead of adding this to each networking applet, I propose using
> > > inetd's connection limiting, or use this applet + telnetd in inetd mode:
> >
> > I cannot use inetd or perhaps not everywhere. Unlimited sessions
> > could allow a password cracking brute force attack on embedded system.
> > That is the reason because I decided to develop this patch. I just
> > upgraded from 1.0.1 to 1.2.2.1 but in this phase I cannot propose
> > further versions. I need to use legacy version because after
> > deployment system firmware would not be upgradeable for a long time.
>
> Patches are uploaded here
>
> http://busybox.net/downloads/fixes-1.2.2.1-foglietta/
>
Thanks very much but ...
:-)
remove -foglietta suffix because I hope others people will
contribute. I would prefer patches-1.2.2.1-unofficial because may be
some feature like flock or timeout could be added too, not only
bugfixes. I do not think is the case but If you are seriously worried
about quality of patches and you prefer keep the distance remove them
completely instead. Please.
Naturally if I will add something to 1.2.2.1 I will try to add in
1.8.x too if it does not exist yet. I am not interested at all in
having a fork of busybox just a little bit of maintenance <absolutely
personal point of view> for a milestone version which separate two
eras of bb: "mantainers based developing for niches use only" and
"community based developing for desktop use too" </appov>.
Best regards,
--
/roberto
_______________________________________________
busybox mailing list
busybox@busybox.net
http://busybox.net/cgi-bin/mailman/listinfo/busybox
[prev in list] [next in list] [prev in thread] [next in thread]
Configure |
About |
News |
Add a list |
Sponsored by KoreLogic