Mercurial > dropbear
diff svr-auth.c @ 579:8c737cd7c1af
merge of '48fdaa8706d1acda35e9d564adc9a1fbc96c18c8'
and '658fd03abd21e0da7c4c89b9fff9dc693c72daae'
| author | Matt Johnston <matt@ucc.asn.au> |
|---|---|
| date | Sat, 27 Feb 2010 11:53:18 +0000 |
| parents | d3ea8b9672f0 |
| children | a98a2138364a |
line wrap: on
line diff
--- a/svr-auth.c Wed Feb 24 16:13:15 2010 +0000 +++ b/svr-auth.c Sat Feb 27 11:53:18 2010 +0000 @@ -33,6 +33,7 @@ #include "packet.h" #include "auth.h" #include "runopts.h" +#include "random.h" static void authclear(); static int checkusername(unsigned char *username, unsigned int userlen); @@ -337,7 +338,12 @@ encrypt_packet(); if (incrfail) { - usleep(300000); /* XXX improve this */ + unsigned int delay; + genrandom((unsigned char*)&delay, sizeof(delay)); + /* We delay for 300ms +- 50ms, 0.1ms granularity */ + delay = 250000 + (delay % 1000)*100; + usleep(delay); + dropbear_log(LOG_INFO, "delay is %d", delay); ses.authstate.failcount++; }