I wonder why there is no delay after a failed authentification attempt (daemon mode).
Should be easy to write a brute-force attack script using RSYNC_PASSWORD...
Wouldn't a delay make attacks much more difficult ?

Regards,
Frank Schaefer

--
Please use reply-all for most replies to avoid omitting the mailing list.
To unsubscribe or change options: https://lists.samba.org/mailman/listinfo/rsync
Before posting, read: http://www.catb.org/~esr/faqs/smart-questions.html

Reply via email to