[Info-vax] SSH on VAX - performance impact of break in attempts

[JF Mezei]

AEF wrote:

> There's also break-in evasion.


I am not sure break in evasion will sold the *performance* problem. The
remote user is still able to connect and try a username/password, it is
just refused (even if correct).  This process is what consumes lots of
CPU due to the setup of the encrypted connection.

The proper thing to do would be to detect those attemps, and then send
snmp messages to the router to block the originating IP in an access
list. This prevents those CPU-expemsive login attempts.