From owner-freebsd-stable Tue Sep 21 2:12:31 1999 Delivered-To: freebsd-stable@freebsd.org Received: from flood.ping.uio.no (flood.ping.uio.no [129.240.78.31]) by hub.freebsd.org (Postfix) with ESMTP id 4E0ED154D0; Tue, 21 Sep 1999 02:12:24 -0700 (PDT) (envelope-from des@flood.ping.uio.no) Received: (from des@localhost) by flood.ping.uio.no (8.9.3/8.9.3) id LAA74967; Tue, 21 Sep 1999 11:12:04 +0200 (CEST) (envelope-from des) To: Wes Peters Cc: Brad Knowles , Luigi Rizzo , Dag-Erling Smorgrav , jcarlos@bahianet.com.br, stable@FreeBSD.ORG, questions@FreeBSD.ORG, security@FreeBSD.ORG, hitech@bahianet.com.br Subject: Re: Out of mbuf clusters References: <199909201247.OAA08309@labinfo.iet.unipi.it> <37E6A807.7E07D48A@softweyr.com> <37E6E32C.D6CC67C6@softweyr.com> From: Dag-Erling Smorgrav Date: 21 Sep 1999 11:12:03 +0200 In-Reply-To: Wes Peters's message of "Mon, 20 Sep 1999 19:45:16 -0600" Message-ID: Lines: 23 X-Mailer: Gnus v5.5/Emacs 19.34 Sender: owner-freebsd-stable@FreeBSD.ORG Precedence: bulk X-Loop: FreeBSD.ORG Wes Peters writes: > Brad Knowles wrote: > > I disagree. I read what he wrote, and while those might be the > > necessary steps to run the world's largest IRC server, or the world's > > most secure, I think we can all agree that not everyone in the world > > needs to be a Superman in order to have an IRC server that doesn't > > spontaneously crash. > Right up until somebody launches a clone attack against you, which results > in your server rolling over and dying one way or another. Actually, clone attacks aren't very common because they're easy to foil (by setting up sufficiently restrictive connection classes). Floodinf, smurfing and SYN attacks are much more common. As has been pointed out on -security, FreeBSD may panic when subjected to a heavy SYN flood. > I wasn't referring to DES's reply, which was really quite mild for him. Hmpfs. DES -- Dag-Erling Smorgrav - des@flood.ping.uio.no To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-stable" in the body of the message