From 1419f87a8e5da62e47bb811e75c714c7544f5889 Mon Sep 17 00:00:00 2001 From: Silvan Calarco Date: Sat, 6 Jan 2024 08:15:57 +0100 Subject: [PATCH] sshd.socket: set MaxConnectionsPerSource=16 to limit max-limit-hits deactivation for dos attempts [release 8.8p1-2mamba;Mon Dec 13 2021] --- openssh-sshd.socket | 1 + openssh.spec | 6 ++++-- 2 files changed, 5 insertions(+), 2 deletions(-) diff --git a/openssh-sshd.socket b/openssh-sshd.socket index 7e734d9..299d456 100644 --- a/openssh-sshd.socket +++ b/openssh-sshd.socket @@ -6,6 +6,7 @@ ConditionPathExists=!/etc/ssh/sshd_not_to_be_run [Socket] ListenStream=22 Accept=yes +MaxConnectionsPerSource=16 [Install] WantedBy=sockets.target diff --git a/openssh.spec b/openssh.spec index face063..ed85840 100644 --- a/openssh.spec +++ b/openssh.spec @@ -7,7 +7,7 @@ Name: openssh Version: 8.8p1 -Release: 1mamba +Release: 2mamba Summary: OpenSSH free Secure Shell (SSH) implementation Group: Network/Security Vendor: openmamba @@ -26,7 +26,6 @@ Patch1: openssh-8.2p1-arm-glibc-2.31.patch Patch2: openssh-8.4p1-sandbox-seccomp.patch License: BSD ## AUTOBUILDREQ-BEGIN -#libdl.so.2()(64bit): /usr/lib64/libdl.so: file not owned by any package BuildRequires: glibc-devel BuildRequires: libX11-devel BuildRequires: libatk-devel @@ -302,6 +301,9 @@ exit 0 %{_libexecdir}/openssh/ssh-askpass %changelog +* Mon Dec 13 2021 Silvan Calarco 8.8p1-2mamba +- sshd.socket: set MaxConnectionsPerSource=16 to limit max-limit-hits deactivation for dos attempts + * Mon Sep 27 2021 Automatic Build System 8.8p1-1mamba - automatic version update by autodist