|
What is an IDS server? And where can I get info
oni?
Thanks
Neil
----- Original Message -----
Sent: Saturday, March 12, 2005 8:19
PM
Subject: RE: [msvc] IOCP socket
connections
Hi,
I am writing a IOCP socket application
allowing for 500 connections. If someone trying to hack into the server
tries hundreds of connections at one time, what is the best way to try to
stop this? Is there a way to only allow a backlog of simultaneously
connections? This way the server checks the IP address, then closes the
connection if not on the list.
Yes, you
can implement maximum_connections and maximum_connections_from_ip, but I
question it for two reasons: 1. These days a DDoS attack is too easy, and
2. Even if *your app* gets away with this, the OS or the network
connection might be brought to their knees trying to withstand the burden of
incoming TCP requests, and if the OS is to crash, there's little point in
trying to preserve the server which runs on it.
I think
running an IDS server in front of your app server would do a better job in
preventing a DoS attack.
Do ever what you will - but first be such
as can will.
-Thus Spoke Zarathustra, F. W.
Nietzsche |
_______________________________________________
msvc mailing
list
[email protected]
See
http://beginthread.com/mailman/listinfo/msvc_beginthread.com for subscription
changes, and list archive.
|
_______________________________________________
msvc mailing list
[email protected]
See http://beginthread.com/mailman/listinfo/msvc_beginthread.com for
subscription changes, and list archive.
