Abuse Melding

Je hebt een klacht over de onderstaande posting:

02-10-2008, 12:52 door RichieB

If the problem is that a single malicious user can exhaust resources used by the TCP/IP stack, wouldn't limiting the amount of IP connections allowed from a single source IP address solve the problem? Think "limit-resource rate conns" or "iptables -m connlimit" or even mod_limitipconn. Of course if you have access to (a lot of) different source IP addresses, you can work around a connection limitation, but then you can also launch a classic DDOS attack.

Beschrijf je klacht (Optioneel):

captcha