httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Andy Finkenstadt" <>
Subject RE: getpeername() and strong source blocking
Date Tue, 23 Jun 1998 16:45:02 GMT
Good point!  I had already hardened my server to SYN attacks so adding the
source route would have no additional impact.

-----Original Message-----
From: [] On
Behalf Of Marc Slemko
Sent:	Tuesday, June 23, 1998 11:28 AM
Subject:	Re: getpeername() and strong source blocking

Someone else suggested adding a route to the loopback interface, which
works but it can cause major problems on systems that are ill-defended
against SYN attacks because that is just what it can look like; each SYN
that arrives will cause a socket to be in SYN_SENT until it eventually
times out.

View raw message