Opened 19 years ago

Last modified 19 years ago

#811 closed Bug report

Non repsonsive server

Reported by: robske75 Owned by: Tim Kosse
Priority: high Component: Other
Keywords: Cc: robske75, Tim Kosse
Component version: Operating system type:
Operating system version:

Description

When hammering the FTP server on a local host
(127.0.0.1) with wrong logins, the server becomes
non-responsive after 12 attempts. I see the '(not
logged in)' text in the server log when a user logs on,
but the server never returns the password prompt ans
stalls for this connection completely.

Valid users cannot log on anymore as well.

Change History (3)

comment:1 by robske75, 19 years ago

produced this with 0.9.4d and e beta .

comment:2 by robske75, 19 years ago

produced this with 0.9.4d and 0.9.4e

comment:3 by Tim Kosse, 19 years ago

It's caused by the anti-hammering code which blocks brute
force attacks on user passwords. Only the offending IP
address is affected, other IP addresses have their own
anti-hammering timer.

Thanks to your report I've found a typo in the source. The
desired bahaviour is that the connection is delayed for a
couple of seconds, but not blocked.

I'll release an update in a few days.

Note: See TracTickets for help on using tickets.