projects / platform / kernel / linux-starfive.git / commit
? search:
summary | shortlog | log | commit | commitdiff | tree
(parent: 34061d6) | patch
ksmbd: throttle session setup failures to avoid dictionary attacks
authorNamjae Jeon <linkinjeon@kernel.org>
Wed, 13 Oct 2021 08:28:31 +0000 (17:28 +0900)
committerSteve French <stfrench@microsoft.com>
Wed, 20 Oct 2021 05:07:10 +0000 (00:07 -0500)
commit621be84a9d1fbf0097fd058e249ec5cc4f35f3c5
treee6d922ce3d5262c34c781768ee51588ce4c80e2etree | snapshot
parent34061d6b76a41b1e43c19e1e50d98e5d77f77d4ecommit | diff
ksmbd: throttle session setup failures to avoid dictionary attacks

To avoid dictionary attacks (repeated session setups rapidly sent) to
connect to server, ksmbd make a delay of a 5 seconds on session setup
failure to make it harder to send enough random connection requests
to break into a server if a user insert the wrong password 10 times
in a row.

Signed-off-by: Namjae Jeon <linkinjeon@kernel.org>
Signed-off-by: Steve French <stfrench@microsoft.com>
fs/ksmbd/ksmbd_netlink.h diff | blob | history
fs/ksmbd/mgmt/user_config.c diff | blob | history
fs/ksmbd/mgmt/user_config.h diff | blob | history
fs/ksmbd/smb2pdu.c diff | blob | history
fs/ksmbd/transport_ipc.c diff | blob | history
fs/ksmbd/transport_ipc.h diff | blob | history
Domain: System / Kernel;