Hi all,
I was wondering if there is a way to limit the maximum number of failed authentication attempts in an ssh server. looks like the serverAuthenticate method won’t exit unless the authentication was successful or a i/o error occurs during packet read/write. I see only three options here to limit the number of failed authentications:
Callbacks
when the limit is reachedserverAuthenticate
to support a new config parameter that specifies the maximum number of attempts.I think the first two options are ugly. My colleague has a patch, i was just wondering what everyone think of the idea before submitting the changes.
Cheers,
JS