----------------------------------------------------------------
BEFORE YOU POST, search the faq at <http://java.apache.org/faq/>
WHEN YOU POST, include all relevant version numbers, log files,
and configuration files. Don't make us guess your problem!!!
----------------------------------------------------------------
<snip>
Somebody said here that there network admin did not worry about it too much
because there webserver was behind a firewall and all that. The fact of the
matter is that it does not matter if your webserver is behind the firewall,
you
are still opening some port or some proxy way in so that your users request
can
get to the webserver. May be you opened port 80 on the firewall and direct
all
traffic coming in to port 80 to the internal (private) IP address of the
webserver, it is still possible to get the half acknowledged TCP session
going
with the server.
<snip>
This is way off topic for the list, but I believe it's important to note
that this is simply not accurate. Modern firewalls can prevent exactly this
situation. They use several techniques to handle this attack. The August
2000 issue of PC magazine describes some products and how they work,
starting on page 68.
In the spirit of trying to avoid flooding this list with off topic messages,
please respond directly to me at [EMAIL PROTECTED] Thanks.
.... Bob Kimble
--
--------------------------------------------------------------
Please read the FAQ! <http://java.apache.org/faq/>
To subscribe: [EMAIL PROTECTED]
To unsubscribe: [EMAIL PROTECTED]
Search Archives:
<http://www.mail-archive.com/java-apache-users%40list.working-dogs.com/>
Problems?: [EMAIL PROTECTED]
