From owner-freebsd-questions@FreeBSD.ORG Wed Jan 10 15:39:29 2007 Return-Path: X-Original-To: questions@freebsd.org Delivered-To: freebsd-questions@FreeBSD.ORG Received: from mx1.freebsd.org (mx1.freebsd.org [69.147.83.52]) by hub.freebsd.org (Postfix) with ESMTP id 0DCBF16A416 for ; Wed, 10 Jan 2007 15:39:29 +0000 (UTC) (envelope-from derek@computinginnovations.com) Received: from betty.computinginnovations.com (dsl081-227-250.chi1.dsl.speakeasy.net [64.81.227.250]) by mx1.freebsd.org (Postfix) with ESMTP id A4E4213C458 for ; Wed, 10 Jan 2007 15:39:28 +0000 (UTC) (envelope-from derek@computinginnovations.com) Received: from p28.computinginnovations.com (dhcp-10-20-30-100.computinginnovations.com [10.20.30.100]) (authenticated bits=0) by betty.computinginnovations.com (8.13.6/8.12.11) with ESMTP id l0AFcwk8067093; Wed, 10 Jan 2007 09:38:58 -0600 (CST) Message-Id: <6.0.0.22.2.20070110093718.02639c38@mail.computinginnovations.com> X-Sender: derek@mail.computinginnovations.com X-Mailer: QUALCOMM Windows Eudora Version 6.0.0.22 Date: Wed, 10 Jan 2007 09:38:51 -0600 To: Nejc =?iso-8859-1?Q?=8Akoberne?= , questions@freebsd.org From: Derek Ragona In-Reply-To: <45A4FDDA.8040909@skoberne.net> References: <45A4FDDA.8040909@skoberne.net> Mime-Version: 1.0 X-ComputingInnovations-MailScanner-Information: Please contact the ISP for more information X-ComputingInnovations-MailScanner: Found to be clean X-ComputingInnovations-MailScanner-From: derek@computinginnovations.com X-Spam-Status: No Content-Type: text/plain; charset="iso-8859-1"; format=flowed Content-Transfer-Encoding: quoted-printable X-Content-Filtered-By: Mailman/MimeDel 2.1.5 Cc: Subject: Re: Simple DoS X-BeenThere: freebsd-questions@freebsd.org X-Mailman-Version: 2.1.5 Precedence: list List-Id: User questions List-Unsubscribe: , List-Archive: List-Post: List-Help: List-Subscribe: , X-List-Received-Date: Wed, 10 Jan 2007 15:39:29 -0000 Your client caused their own DOS by making it impossible to route network= =20 traffic. Basically causing an arp storm. In simple terms, don't do that. Not much you can do with dumb clients, except reward them with a bill for= =20 their actions. -Derek At 08:53 AM 1/10/2007, Nejc =8Akoberne wrote: >Hello, > >yesterday one of our clients did something interesting (stupid): they >connected both ends of an UTP cable to the same switch, to which our >FreeBSD server was also connected. The server was immediately completely >unresponsive from yesterday evening until this morning, when our tech >guy went there to see what the problem was. Even when they rebooted >the FreeBSD machine, it wouldn't boot normally - disk I/O was very >busy and everything was happening unusably slow. After the disconnect >from that switch, everything went back to normal. > >Any ideas how to prevent such situations in the future? (I would like >to do it on the server side, not on the "user side".) > >Thanks, >Nejc > > --=20 This message has been scanned for viruses and dangerous content by MailScanner, and is believed to be clean. MailScanner thanks transtec Computers for their support.