16069 – RFE: Connection throttling mechanism at negprot

Bug 16069 - RFE: Connection throttling mechanism at negprot

Summary: RFE: Connection throttling mechanism at negprot

Status:	NEW

Alias:	None

Product:	Samba 4.1 and newer
Classification:	Unclassified
Component:	Other (show other bugs)
Version:	unspecified
Hardware:	All All

Importance:	P5 enhancement (vote)
Target Milestone:	---
Assignee:	Samba QA Contact
QA Contact:	Samba QA Contact

URL:
Keywords:

Depends on:
Blocks:

Reported:	2026-05-06 16:23 UTC by Shwetha Acharya
Modified:	2026-05-13 10:12 UTC (History)
CC List:	1 user (show)

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Shwetha Acharya 2026-05-06 16:23:11 UTC

Implement a connection throttling mechanism in Samba's SMB server to mitigate resource exhaustion caused by SYN flood and connection-flooding attacks on port 445.

Introduce tracking of SMB protocol negotiation (negprot) activity and temporarily pause acceptance of new connections when the number of concurrent negotiations exceeds a configured threshold.