Date: Mon, 17 Jul 2006 14:24:11 -0400 From: Mikhail Teterin <mi+mx@aldan.algebra.com> To: "David J. Orman" <ormandj@corenode.com> Cc: isp@freebsd.org, net@freebsd.org Subject: Re: forcing FTP-uploaded files to be of certain types only Message-ID: <200607171424.11726.mi%2Bmx@aldan.algebra.com> In-Reply-To: <c88e9a881918.44bb45a9@corenode.com> References: <200607171306.01882.mi%2Bmx@aldan.algebra.com> <200607171358.09943.mi%2Bmx@aldan.algebra.com> <c88e9a881918.44bb45a9@corenode.com>
next in thread | previous in thread | raw e-mail | index | archive | help
понед╕лок 17 липень 2006 14:09, David J. Orman написав: > That could lead to many DoS attacks, high load, etc - but as you said you > trust the users, I suspect this is not an issue to you. I personally code > with security in mind no matter the situation, but you decide what is best > for you. :) Well, it is not hard to compress 100K (that are still in RAM) on a modern CPU. And we can just as well try 8K. It is, probably, easier, than to, say, look up an article in a database -- something web-servers do many times per second :-) Our FTP uploads happen far less often -- only 10-20 times per day... The probability of a DoS of the full filesystem is far more likely (actually happened a few times), than the DoS of overloading the CPU (and inetd takes care of not starting too many too often). Thanks a lot for your recommendations! -mi
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?200607171424.11726.mi%2Bmx>