diff options
| author | Matt Johnston <matt@ucc.asn.au> | 2021-03-02 22:20:14 +0800 |
|---|---|---|
| committer | Matt Johnston <matt@ucc.asn.au> | 2021-03-02 22:20:14 +0800 |
| commit | 8552a0e9eba1bb3a644543d2d63b0789f2e779e5 (patch) | |
| tree | e947a268df79ab4323db1ac2b332f43431a14757 | |
| parent | d20420e709e93d86f097bb31c8f98f4f7529e6fa (diff) | |
Disable UNAUTH_CLOSE_DELAY by default
| -rw-r--r-- | default_options.h | 7 |
1 files changed, 5 insertions, 2 deletions
diff --git a/default_options.h b/default_options.h index d6b6d55..5cbffce 100644 --- a/default_options.h +++ b/default_options.h @@ -256,8 +256,11 @@ Homedir is prepended unless path begins with / */ /* -T server option overrides */ #define MAX_AUTH_TRIES 10 -/* Delay introduced before closing an unauthenticated session (seconds) */ -#define UNAUTH_CLOSE_DELAY 30 +/* Delay introduced before closing an unauthenticated session (seconds). + Disabled by default, can be set to say 30 seconds to reduce the speed + of password brute forcing. Note that there is a risk of denial of + service by setting this */ +#define UNAUTH_CLOSE_DELAY 0 /* The default file to store the daemon's process ID, for shutdown scripts etc. This can be overridden with the -P flag */ |