Re: Linux 2.4.27 SECURITY BUG - TCP Local and REMOTE(verified) Denialof Service Attack

From: Paul Jakma
Date: Sun Sep 12 2004 - 23:27:41 EST

Next message: Benjamin Herrenschmidt: "[PATCH] ppc64:Fix missing register in altivec context switch"
Previous message: David Gibson: "[PPC64] Improved VSID allocation algorithm"
In reply to: Willy Tarreau: "Re: Linux 2.4.27 SECURITY BUG - TCP Local and REMOTE(verified) Denial of Service Attack"
Next in thread: Tonnerre: "Re: Linux 2.4.27 SECURITY BUG - TCP Local and REMOTE(verified) Denial of Service Attack"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

On Mon, 13 Sep 2004, Willy Tarreau wrote:

It should not necessarily wait for the time-out, but at least wait for
a few reconnect errors.

No, it should wait for the timeout. (how many reconnects? maybe use a time for that? well, you already have one, so use that. if you want to timeout quicker, lower it.)

Alas though, it wouldnt be BGP.

Regards,
willy

regards,
--
Paul Jakma paul@xxxxxxxx paul@xxxxxxxxx Key ID: 64A2FF6A
Fortune:
You will be called upon to help a friend in trouble.
-
To unsubscribe from this list: send the line "unsubscribe linux-kernel" in
the body of a message to majordomo@xxxxxxxxxxxxxxx
More majordomo info at http://vger.kernel.org/majordomo-info.html
Please read the FAQ at http://www.tux.org/lkml/

Next message: Benjamin Herrenschmidt: "[PATCH] ppc64:Fix missing register in altivec context switch"
Previous message: David Gibson: "[PPC64] Improved VSID allocation algorithm"
In reply to: Willy Tarreau: "Re: Linux 2.4.27 SECURITY BUG - TCP Local and REMOTE(verified) Denial of Service Attack"
Next in thread: Tonnerre: "Re: Linux 2.4.27 SECURITY BUG - TCP Local and REMOTE(verified) Denial of Service Attack"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]