Date: Sat, 26 Aug 2000 08:19:36 -0700 (PDT) From: FengYue <fengyue@bluerose.windmoon.nu> To: freebsd-hackers@freebsd.org Subject: SYN flood prevention methods Message-ID: <Pine.BSF.4.10.10008260810450.9608-100000@bluerose.windmoon.nu>
next in thread | raw e-mail | index | archive | help
Hi, I know this is an old topic but I don't seem to find answers to my questions in the mailing list archives. I'm wondering why FreeBSD did not implement the SYN cookies method that is currently implemented in Linux? To my best understanding, SYN cookie seems to be a better method against SYS flood than the random drop method. It seems both OpenBSD and FreeBSD have implemented the random drop method. I guess there are must be some "bad things" about SYN cookies that I don't know about. Also, I was looking at the netinet/ code this morning but was not able to find how the seq backlog queue is created/defined. Thanks! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-hackers" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?Pine.BSF.4.10.10008260810450.9608-100000>