Date: Thu, 12 Sep 1996 10:13:34 PDT From: Bill Fenner <fenner@parc.xerox.com> To: Karl Denninger <karl@mcs.net> Cc: michael@memra.com (Michael Dillon), freebsd-hackers@freebsd.org Subject: Re: SYN Resisting (fwd) Message-ID: <96Sep12.101349pdt.177595@crevenia.parc.xerox.com> In-Reply-To: Your message of "Wed, 11 Sep 1996 12:39:57 PDT." <199609111939.OAA02328@Jupiter.mcs.net>
next in thread | previous in thread | raw e-mail | index | archive | help
I think that TCPTV_KEEP_INIT should be a sysctl variable, so that when someone is syn flooding you you can reduce it as low as you want, but when they're not you can leave it high so that people far away can connect to you. Perhaps the "unlimited so_q0len" should also be a sysctl ('tho "unlimited" is probably pretty dangerous in itself...). Bill
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?96Sep12.101349pdt.177595>