httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From "Andy Finkenstadt" <an...@simutronics.com>
Subject RE: getpeername() and strong source blocking
Date Tue, 23 Jun 1998 16:45:02 GMT
Good point!  I had already hardened my server to SYN attacks so adding the
source route would have no additional impact.
Andy


-----Original Message-----
From:	new-httpd-owner@apache.org [mailto:new-httpd-owner@apache.org] On
Behalf Of Marc Slemko
Sent:	Tuesday, June 23, 1998 11:28 AM
To:	new-httpd@apache.org
Subject:	Re: getpeername() and strong source blocking

Someone else suggested adding a route to the loopback interface, which
works but it can cause major problems on systems that are ill-defended
against SYN attacks because that is just what it can look like; each SYN
that arrives will cause a socket to be in SYN_SENT until it eventually
times out.



Mime
View raw message