Return-Path: Delivered-To: apmail-jakarta-tomcat-user-archive@www.apache.org Received: (qmail 56420 invoked from network); 10 Jun 2004 16:41:31 -0000 Received: from hermes.apache.org (HELO mail.apache.org) (209.237.227.199) by minotaur-2.apache.org with SMTP; 10 Jun 2004 16:41:31 -0000 Received: (qmail 21334 invoked by uid 500); 10 Jun 2004 16:41:09 -0000 Delivered-To: apmail-jakarta-tomcat-user-archive@jakarta.apache.org Received: (qmail 21254 invoked by uid 500); 10 Jun 2004 16:41:07 -0000 Mailing-List: contact tomcat-user-help@jakarta.apache.org; run by ezmlm Precedence: bulk List-Unsubscribe: List-Subscribe: List-Help: List-Post: List-Id: "Tomcat Users List" Reply-To: "Tomcat Users List" Delivered-To: mailing list tomcat-user@jakarta.apache.org Received: (qmail 21214 invoked by uid 99); 10 Jun 2004 16:41:05 -0000 Received: from [128.32.61.106] (HELO calmail-cl.berkeley.edu) (128.32.61.106) by apache.org (qpsmtpd/0.27.1) with ESMTP; Thu, 10 Jun 2004 09:41:05 -0700 Received: from [128.32.107.5] (account rfhall@calmail.berkeley.edu HELO berkeley.edu) by calmail-cl.berkeley.edu (CommuniGate Pro SMTP 4.1.8) with ESMTP-TLS id 37521121 for tomcat-user@jakarta.apache.org; Thu, 10 Jun 2004 09:40:49 -0700 Message-ID: <40C88EFB.80807@berkeley.edu> Date: Thu, 10 Jun 2004 09:40:27 -0700 From: "Robert F. Hall" User-Agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:1.4) Gecko/20030624 X-Accept-Language: en-us, en MIME-Version: 1.0 To: Tomcat Users List Subject: Re: Denial Service Attack Prevention apache-tomcat modjk2 References: <9C5166762F311146951505C6790A9CF80229BAF2@US-VS1.corp.mpi.com> In-Reply-To: <9C5166762F311146951505C6790A9CF80229BAF2@US-VS1.corp.mpi.com> Content-Type: multipart/alternative; boundary="------------020301050001060601060001" X-Virus-Checked: Checked X-Spam-Rating: minotaur-2.apache.org 1.6.2 0/1000/N --------------020301050001060601060001 Content-Type: text/plain; charset=us-ascii; format=flowed Content-Transfer-Encoding: 7bit Howdy, And you can disable the submit button up fron if the user has JavaScript disabled, displaying a message to indicate that your site requires JavaScript. Then there is also the SynchronizerToken which your app could use to recognize and ignore duplicate requests. Robert UC Berkeley Shapira, Yoav wrote: >Hi, >You can use JavaScript to disable form elements, thereby graying them >out and preventing the user from clicking again. > >Yoav Shapira >Millennium Research Informatics > > > > >>-----Original Message----- >>From: Steve [mailto:tomcat@sbtt.net] >>Sent: Thursday, June 10, 2004 10:52 AM >>To: Tomcat Users List >>Subject: Denial Service Attack Prevention apache-tomcat modjk2 >> >>Looking for a solution to prevent a user from click multiply times on a >>function in which the application is still performing from the first >> >> >click. > > >>The user thinkgs the app is not responding where in fact it is, then >>causing the app to take a dump from multiply request. >> >>Using cisco css LB into --> Apache, mod_jk2 into tomcat 4.1.29 >> >>any tips or pointers greatly appr >> >>-s >> >> >> >>--------------------------------------------------------------------- >>To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org >>For additional commands, e-mail: tomcat-user-help@jakarta.apache.org >> >> > > > > >This e-mail, including any attachments, is a confidential business communication, and may contain information that is confidential, proprietary and/or privileged. This e-mail is intended only for the individual(s) to whom it is addressed, and may not be saved, copied, printed, disclosed or used by anyone else. If you are not the(an) intended recipient, please immediately delete this e-mail from your computer system and notify the sender. Thank you. > > >--------------------------------------------------------------------- >To unsubscribe, e-mail: tomcat-user-unsubscribe@jakarta.apache.org >For additional commands, e-mail: tomcat-user-help@jakarta.apache.org > > > > --------------020301050001060601060001--