> Is there a CF solution for primitive dos attacks? CF isn't really going to be especially helpful for this, because you don't have a way to automatically track requests on a per-IP basis. You could certainly write some code for this, but if the server's getting that much traffic, you'd be increasing its overhead, I think. If you're using IIS, you'd probably be better off writing an ISAPI filter, I think.
However, if you wanted to do this, you could certainly write CF code to do it. You could track each visitor's IP address, the number of requests from that IP, and the elapsed time in server memory, and write code to "flag" IP addresses with excessive counts. You'd need to include the appropriate code in each Application.cfm file used on the server. Note that if you do this, as mentioned by Adam Cantrell, you'll block spiders, and you might not want to do that. Dave Watts, CTO, Fig Leaf Software http://www.figleaf.com/ voice: (202) 797-5496 fax: (202) 797-5444 ______________________________________________________________________ Dedicated Windows 2000 Server PIII 800 / 256 MB RAM / 40 GB HD / 20 GB MO/XFER Instant Activation � $99/Month � Free Setup http://www.pennyhost.com/redirect.cfm?adcode=coldfusiona FAQ: http://www.thenetprofits.co.uk/coldfusion/faq Archives: http://www.mail-archive.com/[email protected]/ Unsubscribe: http://www.houseoffusion.com/index.cfm?sidebar=lists
