Date: Wed, 13 Dec 2000 21:35:40 -0500 (EST) From: Bosko Milekic <bmilekic@technokratis.com> To: Bill Fumerola <billf@mu.org> Cc: freebsd-net@FreeBSD.ORG Subject: Re: Ratelimint Enhancement patch (Please Review One Last Time!) Message-ID: <Pine.BSF.4.21.0012132134340.25075-100000@jehovah.technokratis.com> In-Reply-To: <20001213193014.J72273@elvis.mu.org>
next in thread | previous in thread | raw e-mail | index | archive | help
On Wed, 13 Dec 2000, Bill Fumerola wrote:
> On Wed, Dec 13, 2000 at 02:42:53PM -0500, Richard A. Steenbergen wrote:
>
> > It could just as easily be a SYN flood against a single port... or a large
> > number of clients trying to connected to your crashed web server... :P Or
> > it could just as easily be an ack flood against a port without a listener
> > and be showing up in the "not the ack flood" counter.
>
> Exactly. Bikeshedding the millions of possible reasons the queue/ratelimit
> was triggered is silly.
>
> Bosko, please change the descriptions to something very generic before
> committing them ("ratelimiting TCP RST packets: x/y pps" or something)
Mike said he would do it and re-post the diff.
> --
> Bill Fumerola - security yahoo / Yahoo! inc.
> - fumerola@yahoo-inc.com / billf@FreeBSD.org
Later,
Bosko Milekic
bmilekic@technokratis.com
To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-net" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.21.0012132134340.25075-100000>