Skip site navigation (1)Skip section navigation (2)
Date:      Thu, 12 Sep 1996 10:13:34 PDT
From:      Bill Fenner <fenner@parc.xerox.com>
To:        Karl Denninger <karl@mcs.net>
Cc:        michael@memra.com (Michael Dillon), freebsd-hackers@freebsd.org
Subject:   Re: SYN Resisting (fwd) 
Message-ID:  <96Sep12.101349pdt.177595@crevenia.parc.xerox.com>
In-Reply-To: Your message of "Wed, 11 Sep 1996 12:39:57 PDT." <199609111939.OAA02328@Jupiter.mcs.net> 

next in thread | previous in thread | raw e-mail | index | archive | help
I think that TCPTV_KEEP_INIT should be a sysctl variable, so that when someone 
is syn flooding you you can reduce it as low as you want, but when they're not 
you can leave it high so that people far away can connect to you.  Perhaps the 
"unlimited so_q0len" should also be a sysctl ('tho "unlimited" is probably 
pretty dangerous in itself...).

  Bill





Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?96Sep12.101349pdt.177595>