> I wrote a patch to the linux networking part of the kernel which allows
> you to aviod denial of service. Basicaly it does a more accurate
> accounting of sockets and does not let more then MAXCONNFROMONEIP
> connetions from the same ip.
This sounds like a very effective Denial-of-service attack for everybody
who can spoof this IP.
-Andi
-- This is like TV. I don't like TV.- To unsubscribe from this list: send the line "unsubscribe linux-kernel" in the body of a message to majordomo@vger.rutgers.edu Please read the FAQ at http://www.tux.org/lkml/