From owner-freebsd-stable  Tue Aug 22  1:58:43 2000
Delivered-To: freebsd-stable@freebsd.org
Received: from freefall.freebsd.org (freefall.FreeBSD.org [216.136.204.21])
	by hub.freebsd.org (Postfix) with ESMTP
	id E8F2437B42C; Tue, 22 Aug 2000 01:58:41 -0700 (PDT)
Received: from localhost (kris@localhost)
	by freefall.freebsd.org (8.9.3/8.9.2) with ESMTP id BAA92364;
	Tue, 22 Aug 2000 01:58:41 -0700 (PDT)
	(envelope-from kris@FreeBSD.org)
X-Authentication-Warning: freefall.freebsd.org: kris owned process doing -bs
Date: Tue, 22 Aug 2000 01:58:41 -0700 (PDT)
From: Kris Kennaway <kris@FreeBSD.org>
To: Noor Dawod <noor@comrax.com>
Cc: Domas Mituzas <midom@dammit.lt>, freebsd-stable@FreeBSD.ORG
Subject: RE: DoS attacks and FreeBSD.
In-Reply-To: <PHEBIOJOBJJLIIJCOINKEEFACHAA.noor@comrax.com>
Message-ID: <Pine.BSF.4.21.0008220156510.92211-100000@freefall.freebsd.org>
MIME-Version: 1.0
Content-Type: TEXT/PLAIN; charset=US-ASCII
Sender: owner-freebsd-stable@FreeBSD.ORG
Precedence: bulk
X-Loop: FreeBSD.ORG

On Tue, 22 Aug 2000, Noor Dawod wrote:

> Yes, it can, and I've alreaedy done just that. But then again, all other
> legitimate visitors will be locked out...

Depends how smart the rate-limiting is. If it's at the application level
you know the connection (probably) isn't spoofed, which means you can
rate-limit per IP.

Kris

--
In God we Trust -- all others must submit an X.509 certificate.
    -- Charles Forsythe <forsythe@alum.mit.edu>



To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-stable" in the body of the message