From owner-freebsd-hackers  Fri Jun 21 16:58:57 2002
Delivered-To: freebsd-hackers@freebsd.org
Received: from mailsrv.otenet.gr (mailsrv.otenet.gr [195.170.0.5])
	by hub.freebsd.org (Postfix) with ESMTP id 2E4D537B40C
	for <hackers@FreeBSD.org>; Fri, 21 Jun 2002 16:58:53 -0700 (PDT)
Received: from hades.hell.gr (patr530-a165.otenet.gr [212.205.215.165])
	by mailsrv.otenet.gr (8.12.3/8.12.3) with ESMTP id g5LNwnuD008124;
	Sat, 22 Jun 2002 02:58:49 +0300 (EEST)
Received: from hades.hell.gr (hades [127.0.0.1])
	by hades.hell.gr (8.12.4/8.12.4) with ESMTP id g5LNwmLN007751;
	Sat, 22 Jun 2002 02:58:48 +0300 (EEST)
	(envelope-from keramida@FreeBSD.org)
Received: (from charon@localhost)
	by hades.hell.gr (8.12.4/8.12.4/Submit) id g5LNwltl007750;
	Sat, 22 Jun 2002 02:58:47 +0300 (EEST)
	(envelope-from keramida@FreeBSD.org)
Date: Sat, 22 Jun 2002 02:58:47 +0300
From: Giorgos Keramidas <keramida@FreeBSD.org>
To: Terry Lambert <tlambert2@mindspring.com>
Cc: Wouter Van Hemel <wouter@pair.com>, hackers@FreeBSD.org
Subject: Re: Limiting clients per source IP address (ftpd, inetd, etc.)
Message-ID: <20020621235847.GE5836@hades.hell.gr>
References: <20020621000924.GA2178@hades.hell.gr> <3D129CA8.EFADA4FF@mindspring.com> <1024656206.277.9.camel@cocaine> <3D13A4DA.28F3B169@mindspring.com>
Mime-Version: 1.0
Content-Type: text/plain; charset=us-ascii
Content-Disposition: inline
In-Reply-To: <3D13A4DA.28F3B169@mindspring.com>
Sender: owner-freebsd-hackers@FreeBSD.ORG
Precedence: bulk
List-ID: <freebsd-hackers.FreeBSD.ORG>
List-Archive: <http://docs.freebsd.org/mail/> (Web Archive)
List-Help: <mailto:majordomo@FreeBSD.ORG?subject=help> (List Instructions)
List-Subscribe: <mailto:majordomo@FreeBSD.ORG?subject=subscribe%20freebsd-hackers>
List-Unsubscribe: <mailto:majordomo@FreeBSD.ORG?subject=unsubscribe%20freebsd-hackers>
X-Loop: FreeBSD.ORG

On 2002-06-21 15:12 +0000, Terry Lambert wrote:
> Someone made the comment about people sitting behind a NAT, so that
> the number of connections from a given IP is actually legitimate
> traffic.  This rate limitation is targetted at an attacker.

Actually I was thinking more of ReGet and Godzilla-style software used
by some users to play unfair and suck more bandwidth out of an FTP
server, by opening a zillion sockets and downloading a single file in
chunks.

- Giorgos


To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-hackers" in the body of the message