Having a maximum at all makes it easy for someone to DoS you because a thread is created for each new SMTP connection.. just connect X times and don't start entering a sender address.
I think the thread maximum should be implemented around the actual virus scan because having a thread which is just waiting to receive an email doesn't actually impact on system resources significantly. How about implementing this as a semaphore in the eom callback, i.e. decrement semaphore; scan using clamd increment semaphore; That would limit the number of simultaneous scans and keep the synchronisation completely within the eom() callback, so fixing the problem with some threads exiting without decrementing the current counter. It also makes it difficult to mount a DoS attack because the clamd scan should return within a determinable amount of time. As always, any thoughts appreciated. Andy On Thu, 29 Apr 2004, Joe Maimon wrote: ; ; >working. It would be really nice to actually have the bug fixed properly ; >though, rather than resorting to work-rounds like that. ; > ; >Mike. ; > ; > ; > ; Well than try my latest patch for max-children-wait argument ; http://www.jmaimon.com/clamav ; ; The default will be to EXIT when we hit the max-children mark, instead ; of loitering around, piling up and delaying email, then still running ; even though there are still too many children. ; ; BE Warned: This means that unless you configure otherwise, clamav-milter ; will TEMPFAIL email whenever it hits the max-children threshold. Which ; means you would probably wish to consider exactly why the max-children ; figure you are using and the sendmail ; define(`confMAX_DAEMON_CHILDREN',`100')dnl ; are different........... ; ; ; ; ; ------------------------------------------------------- ; This SF.Net email is sponsored by: Oracle 10g ; Get certified on the hottest thing ever to hit the market... Oracle 10g. ; Take an Oracle 10g class now, and we'll give you the exam FREE. ; http://ads.osdn.com/?ad_id=3149&alloc_id=8166&op=click ; _______________________________________________ ; Clamav-users mailing list ; [EMAIL PROTECTED] ; https://lists.sourceforge.net/lists/listinfo/clamav-users ; ------------------------------------------------------- This SF.Net email is sponsored by: Oracle 10g Get certified on the hottest thing ever to hit the market... Oracle 10g. Take an Oracle 10g class now, and we'll give you the exam FREE. http://ads.osdn.com/?ad_id=3149&alloc_id=8166&op=click _______________________________________________ Clamav-users mailing list [EMAIL PROTECTED] https://lists.sourceforge.net/lists/listinfo/clamav-users
