On Jun 24, 2009, at 5:18 AM, Joe Orton wrote:
Regardless, the only thing I've ever wanted to see changed in the serverwhich would somewhat mitigate this type of attack is to have coarser granularity on timeouts, e.g. per-request-read, rather than simply per-IO-operation.
++1. Timeout would set universal defaults and we could then have something like Timeout ReqRead 2 to provide further refinement.