Greg White <[EMAIL PROTECTED]> writes:
> On Mon, Jan 29, 2001 at 05:56:38PM -0500, Paul Jarc wrote:
> > Scott Gifford <[EMAIL PROTECTED]> writes:
> > > It means that a user sending a steady stream of 10 (small)
> > > messages/sec over a dialup connection makes your system deal with
> > > 600 messages/sec, which would normally take a T1.
> >
> > But this doesn't involve any real network connections - it's all on
> > loopback. So it wouldn't saturate an actual T1, if that's what you
> > were saying. Right?
>
> I believe that the Scott's point is best illustrated this way (and
> forgive me if I'm wrong here, Scott):
>
> A user on a dialup sending 10 messages per second can start a DoS
> attack normally only possible for a user with a T1, consisting of
> 600 messages per second.
>
> Thus, a lowly dialup user can now mount a much nastier DoS attack
> than he could against MTAs which do not exhibit this problem.
Right. It doesn't actually consume any Internet bandwidth, just mail
server resources.
------ScottG.
