[Bug 3709] New: PerSourceMaxStartups no longer works as advertised

bugzilla-daemon at mindrot.org bugzilla-daemon at mindrot.org
Sat Jul 13 04:15:46 AEST 2024


https://bugzilla.mindrot.org/show_bug.cgi?id=3709

            Bug ID: 3709
           Summary: PerSourceMaxStartups no longer works as advertised
           Product: Portable OpenSSH
           Version: 9.8p1
          Hardware: amd64
                OS: Linux
            Status: NEW
          Severity: normal
          Priority: P5
         Component: sshd
          Assignee: unassigned-bugs at mindrot.org
          Reporter: hans at anargy.com

According to the manpage, PerSourceMaxStartups specifies the number of
unauthenticated connections allowed from a given source address.

If this is set at a number, for example 3, it should be possible to
open multiple authenticated sessions, one after another. Until version
9.7p1 this was possible. But set at for example 3, it is not possible
to open more than three sessions, with the message in the log that new
sessions are being dropped.

What is worse, if all these sessions are disconnected again, it is not
possible at all to log in for a number of minutes.

-- 
You are receiving this mail because:
You are watching the assignee of the bug.


More information about the openssh-bugs mailing list