ComputerSurge/bind9
3
0
Fork 0
Code Pull Requests 1 Activity
Files
07c3365b0bc57226baedaa177ac5cb74cc013950
bind9/lib
History
Witold Kręcicki 07c3365b0b fix enforcement of tcp-clients (v1) 
tcp-clients settings could be exceeded in some cases by
creating more and more active TCP clients that are over
the set quota limit, which in the end could lead to a
DoS attack by e.g. exhaustion of file descriptors.

If TCP client we're closing went over the quota (so it's
not attached to a quota) mark it as mortal - so that it
will be destroyed and not set up to listen for new
connections - unless it's the last client for a specific
interface.

(cherry picked from commit eafcff07c25bdbe038ae1e4b6660602a080b9395)
(cherry picked from commit 9e7617cc84)
2019-04-25 16:32:04 +02:00
..
bind9
don't fail when allow-update{,-forwarding} is used globally
2019-03-21 21:17:49 -07:00
dns
compute the RSAMD5 key id
2019-04-24 08:05:27 +10:00
irs
Convert *.vcxproj.user to CRLF line endings
2019-03-08 18:01:48 +01:00
isc
use isc_refcount_decrement to decrement NEWCONNSOCK(dev)->references; use isc_refcount_increment instead of isc_refcount_init in socket_create
2019-04-23 00:12:17 -04:00
isccc
Convert *.vcxproj.user to CRLF line endings
2019-03-08 18:01:48 +01:00
isccfg
mark "dnssec-enable" as obsolete in the parser
2019-03-14 23:29:07 -07:00
ns
fix enforcement of tcp-clients (v1)
2019-04-25 16:32:04 +02:00
samples
Convert *.vcxproj.user to CRLF line endings
2019-03-08 18:01:48 +01:00
win32/bindevt
Convert *.vcxproj.user to CRLF line endings
2019-03-08 18:01:48 +01:00
.gitignore
Kyuafile
link in lib/isccc/tests/Kyuafile
2018-11-13 07:23:36 +11:00
Makefile.in