Date: Thu, 11 Jun 1998 20:28:43 +0100 From: njs3@doc.ic.ac.uk (Niall Smart) To: Robert Watson <robert+freebsd@cyrus.watson.org>, IBS / Andre Oppermann <andre@pipeline.ch> Cc: hackers@FreeBSD.ORG Subject: Re: [Fwd: Secure Ping 1.0] Message-ID: <E0ykD1f-0004QK-00@oak71.doc.ic.ac.uk> In-Reply-To: Robert Watson <robert@cyrus.watson.org> "Re: [Fwd: Secure Ping 1.0]" (Jun 11, 2:10pm)
next in thread | previous in thread | raw e-mail | index | archive | help
On Jun 11, 2:10pm, Robert Watson wrote: } Subject: Re: [Fwd: Secure Ping 1.0] > On Thu, 11 Jun 1998, IBS / Andre Oppermann wrote: > > > This looks promising ;-) > > Personally, I was under-impressed. This doesn't stop anyone from writing > a tiny program that sends 64k UDP packets to deny service. Yeah. Pointless or what? What you really need is resource limits for sockets. Some Japanese folks worked on this a while ago, but I've lost the URL. It looked good but I'm not sure if its still being maintained. Resource limits for sockets would be neato, I'm sure the virtual hosting people would go crazy for it. I'd guess that you could shim it in pretty easily at the top of the sockets interface without too much trouble. Linux can do something like this using some special device file but I don't think its enforcable on a user by user basis. Niall To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?E0ykD1f-0004QK-00>