On Wed 20/1/2021, at 8:15 pm, Thomas De Schampheleire <patrickdeping...@gmail.com> wrote: > >> # HG changeset patch >> Introduce extra delay before closing unauthenticated sessions > > Any comments on this patch? >
Hi Thomas, Sorry for the delay getting back to you. I've applied the patch, it seems like it could be good as a simple brute force countermeasure. I'm sure a lot of the SSH bots are using varying source IPs from botnets etc, but there doesn't seem much harm in an extra delay. I'll add an option to disable it at runtime just in case it ends up causing problems (resource usage of waiting connections would be my concern). Thanks, Matt