On 6/22/07, James Ling <[EMAIL PROTECTED]> wrote:
Dear Mat:
If this situation happened and you didn't handle it properly,your mina
server will down and the port your server listenning at owill be stucked
after some time..
This is what I worried about. Is it supposed to be handled by Mina core?
(socket accept()) How can I control that in my handler or another filter?
If some clients just loop keep opening socket but not send any pre-defined
packets in your business logic,perfect!
Just to kill them all,even make the connections from the IP blacklisted,as
soon as the connection opened then close it!
If some clients loop keep opening socket and send the packets that
pre-defined in your business logic...Oops!I've no ideas...
Best Wishes,
----- Original Message -----
From: "mat" <[EMAIL PROTECTED]>
To: <dev@mina.apache.org>
Sent: Friday, June 22, 2007 2:16 PM
Subject: Re: malicious client
> Thanks. My concern is what if some clients write a loop keep opening
socket
> connection and my server keeps accepting and eventually mina core will
> reject any new connections. Is that possible to happen? Correct me if i
am
> wrong,
>
> On 6/22/07, 凌晨 <[EMAIL PROTECTED]> wrote:
>>
>> Dear mat:
>> I think you should implement your own handler to detect this kind of
>> connections from time to time then kill them all.
>> You send some detecting packets to these connected connetions,no
>> response,no connection.
>> Best Wishes
>>
>> ----- Original Message -----
>> From: "Mark Webb" <[EMAIL PROTECTED]>
>> To: <dev@mina.apache.org>
>> Sent: Friday, June 22, 2007 8:56 AM
>> Subject: Re: malicious client
>>
>>
>> > maybe a variant of the throttle filter which only allows one
connection
>> per
>> > IP at a time.
>> >
>> > On 6/21/07, mat <[EMAIL PROTECTED]> wrote:
>> >>
>> >> Thanks. But how should I set the TIMEOUT since the malicious
>> client could
>> >> connect by programming a loop, couldn't he?
>> >>
>> >> 2007/6/21, Mark Webb <[EMAIL PROTECTED]>:
>> >> >
>> >> > an IoFilter could probably work. This is related to the filter
work
>> >> that
>> >> > was discussed a while back that dealt with heartbeats.
>> >> >
>> >> > On 6/21/07, Julien Vermillard <[EMAIL PROTECTED]> wrote:
>> >> > >
>> >> > > On Thu, 21 Jun 2007 20:46:55 +0800
>> >> > > mat <[EMAIL PROTECTED]> wrote:
>> >> > >
>> >> > > > I wonder whether any function could prevent Mina from a
malicious
>> >> > > > client attacking by opening connections and not sending any
data.
>> If
>> >> > > > NOT, how could I do? Thanks.
>> >> > >
>> >> > > Hi,
>> >> > >
>> >> > > Just detect IDLEness, in your IoHandler sessionIdle.
>> >> > > If a client doesn't send enought data, close it.
>> >> > >
>> >> > > HTH
>> >> > >
>> >> > > Julien
>> >> > >
>> >> >
>> >> >
>> >> >
>> >> > --
>> >> > ..Cheers
>> >> > Mark
>> >> >
>> >>
>> >
>> >
>> >
>> > --
>> > ..Cheers
>> > Mark
>> >
>
