An Analysis of the DHEat DoS Against SSH in Cloud Environments
Damien Miller
djm at mindrot.org
Thu Jun 27 09:27:04 AEST 2024
On Wed, 26 Jun 2024, Joseph S. Testa II wrote:
> On Wed, 2024-06-26 at 04:32 +0200, Thorsten Glaser wrote:
> > If they get under attack, they’d better do. And if you’re ignoring
> > a known bottleneck, the results will probably not be very useful…
> > besides, not everyone is systemd-infested.
>
> The primary responsibility falls on system designers to choose
> reasonable default settings.
give us a set of defaults that prevents extreme-case DoS while not
preventing legitimate traffic for busy servers and we'll adopt it.
More information about the openssh-unix-dev
mailing list