On Mon, Mar 01, 2004 at 10:32:12AM -0500, Gerard Samuel wrote: > Reposting to list, as I was locked out of -questions over the weekend, and I > don't know if I got any replies. > ----------------- > I read somewhere that they were able to limit CVS pserver connections > to 4 a minute. > I would like to do something similar. > I currently have a firewall/nat box running 4.9-RELEASE-p1, using ipf. > The CVS server is behind the firewall/nat box running on 4.9-RELEASE-p1. > > Thanks for any insight you may provide...
If you're running CVS pserver out of inetd, which I believe is the
usual practice, then you can limit the total number of simultaneous
connections to a service or the maximum rate at which a service may be
invoked: either of those can apply to connections from one specific IP
address or to all connections. See inetd.conf(5), but the syntax you
want is something like:
cvspserver stream tcp nowait/0/4 root /usr/bin/cvs cvs
--allow-root=/your/cvsroot/here pserver
Cheers,
Matthew
--
Dr Matthew J Seaman MA, D.Phil. 26 The Paddocks
Savill Way
PGP: http://www.infracaninophile.co.uk/pgpkey Marlow
Tel: +44 1628 476614 Bucks., SL7 1TH UK
pgp00000.pgp
Description: PGP signature
