From dab6a35f4cf6a7e8a3c05319e891e06887d63998 Mon Sep 17 00:00:00 2001 From: Volker Lendecke Date: Wed, 5 Jan 2011 14:35:11 +0100 Subject: s3: Limit the number of unexpected clients to 200 DoS protection like the max winbind clients. Settable by nmbd:unexpected_clients --- source3/libsmb/unexpected.c | 9 +++++++++ 1 file changed, 9 insertions(+) (limited to 'source3/libsmb') diff --git a/source3/libsmb/unexpected.c b/source3/libsmb/unexpected.c index 7ec5800e69..4543ffe7c6 100644 --- a/source3/libsmb/unexpected.c +++ b/source3/libsmb/unexpected.c @@ -481,6 +481,15 @@ static void nb_packet_server_listener(struct tevent_context *ev, DLIST_ADD(server->clients, client); server->num_clients += 1; + + if (server->num_clients > server->max_clients) { + DEBUG(10, ("Too many clients, dropping oldest\n")); + + /* + * no TALLOC_FREE here, don't mess with the list structs + */ + talloc_free(server->clients->prev); + } } static ssize_t nb_packet_client_more(uint8_t *buf, size_t buflen, -- cgit