From 8552a0e9eba1bb3a644543d2d63b0789f2e779e5 Mon Sep 17 00:00:00 2001
From: Matt Johnston <matt@ucc.asn.au>
Date: Tue, 2 Mar 2021 22:20:14 +0800
Subject: Disable UNAUTH_CLOSE_DELAY by default

---
 default_options.h | 7 +++++--
 1 file changed, 5 insertions(+), 2 deletions(-)

diff --git a/default_options.h b/default_options.h
index d6b6d55..5cbffce 100644
--- a/default_options.h
+++ b/default_options.h
@@ -256,8 +256,11 @@ Homedir is prepended unless path begins with / */
 /* -T server option overrides */
 #define MAX_AUTH_TRIES 10
 
-/* Delay introduced before closing an unauthenticated session (seconds) */
-#define UNAUTH_CLOSE_DELAY 30
+/* Delay introduced before closing an unauthenticated session (seconds).
+   Disabled by default, can be set to say 30 seconds to reduce the speed
+   of password brute forcing. Note that there is a risk of denial of 
+   service by setting this */
+#define UNAUTH_CLOSE_DELAY 0
 
 /* The default file to store the daemon's process ID, for shutdown
    scripts etc. This can be overridden with the -P flag */
-- 
cgit v1.2.3