On 11/14/05, <b class="gmail_sendername">Davor Ocelic</b> <<a href="mailto:docelic@hcoop.net">docelic@hcoop.net</a>> wrote:<div><span class="gmail_quote"></span><blockquote class="gmail_quote" style="border-left: 1px solid rgb(204, 204, 204); margin: 0pt 0pt 0pt 0.8ex; padding-left: 1ex;">
On Mon, Nov 07, 2005 at 10:28:33AM -0800, Chris Clearwater wrote:<br>> On Mon, 2005-11-07 at 09:18 +0530, Tanveer Singh wrote:<br>> > On 11/7/05, Adam Chlipala <<a href="mailto:adamc@hcoop.net">adamc@hcoop.net
</a>> wrote:<br>> > I don't think anyone has replied to this, so I'm not going to<br>> > change<br>> > anything about our set-up for now.<br>> ><br>> > I was thinking about the argument of a DoS attack. We allow ssh to
<br>> > hcoop. So an attacker can ssh as root and take over the entire server.<br>> > That is a bigger security vunerability.<br>><br>> I am pretty sure the default configuration of ssh is *not* to allow ssh
<br>> from root. Unless the admins explicitly enabled that option, I don't<br>> think that is true.<br><br>Well, logging in as root over telnet was disabled by default, but<br>Linux distributions as well as Debian do allow root login over
<br>ssh by default.<br><br>We explicitly turned it off very early in the setup process.<br><br></blockquote></div>I apologize for making this old topic alive again. The thing is that many times when I open pages on my site, our server is unable to process the request in 10 seconds, which is the script timeout time. So you get the server error. Most of the times on refreshing it goes away. This happens when server is loaded, this is my guess. So could we increase the limit to something like 30 seconds. Dialup users face a big problem. One in three times this "Premature end of scrit headers" comes up. If 30 seconds is too much, I guess atleast 20 seconds should be given.
<br>