Re: kernel patch

• Messages sorted by: [ date ][ thread ][ subject ][ author ]
• Next message: Jones D: "RE: A question on System.map (for the FAQ please)"
• Previous message: Andi Kleen: "Re: recvmsg bug: copied 0 seq XXXXX"

> I wrote a patch to the linux networking part of the kernel which allows
> you to aviod denial of service. Basicaly it does a more accurate
> accounting of sockets and does not let more then MAXCONNFROMONEIP
> connetions from the same ip.

This sounds like a very effective Denial-of-service attack for everybody
who can spoof this IP.

-Andi

-- 
This is like TV. I don't like TV.

-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@vger.rutgers.edu
Please read the FAQ at http://www.tux.org/lkml/

• Next message: Jones D: "RE: A question on System.map (for the FAQ please)"
• Previous message: Andi Kleen: "Re: recvmsg bug: copied 0 seq XXXXX"