Date: Mon, 25 Sep 2000 16:57:42 +0200 From: Len Conrad <lconrad@Go2France.com> To: freebsd-questions@freebsd.org Subject: Re: question Message-ID: <5.0.0.25.0.20000925165301.08232d40@mail.Go2France.com> In-Reply-To: <39CF6209.5AAD0F8D@reif.cncdsl.com>
next in thread | previous in thread | raw e-mail | index | archive | help
>I have searched extensively for info on this subject and >have found nothing. I admin a server server of what? >which gets allot of bad requests request for what? >I asked a real Unix guru about the problem and he recommended >using tar pitting. The idea is that every time a bad request >is generated by an I.P. the time the server takes to respond is >increased. >Example: >Bad request #1. server answers with 401 error in 1 second >Bad request #1. server answers with 401 error in 2 seconds >Bad request #1. server answers with 401 error in 4 seconds > >This sounds like the perfect answer to many problems with >a variety of server attacks. The problem is I can only find >info on the subject relating to spam mail and sendmail. www.postfix.org, configuration, UCE, tarpitting is supported, and you might also look at other UCE defenses, plus perhaps set up a relay-onlyh mail hub to front-end short-circuit this crap before it gets to your mailbox server. IMGate in my sig is a FreeBSD/postfix gateway playing just this for Imail, but the approach is not tied any brand of mail server. Len http://BIND8NT.MEIway.com: ISC BIND 8.2.2 p5 installable binary for NT4 http://IMGate.MEIway.com: Build free, hi-perf, anti-spam mail gateways To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-questions" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?5.0.0.25.0.20000925165301.08232d40>