Date: Tue, 28 Sep 1999 14:34:12 +0200 From: Poul-Henning Kamp <phk@critter.freebsd.dk> To: Ville-Pertti Keinonen <will@iki.fi> Cc: current@FreeBSD.ORG, culverk@culverk.student.umd.edu Subject: Re: just found this Message-ID: <25864.938522052@critter.freebsd.dk> In-Reply-To: Your message of "28 Sep 1999 12:29:17 -0000." <19990928122917.16937.qmail@ns.oeno.com>
next in thread | previous in thread | raw e-mail | index | archive | help
In message <19990928122917.16937.qmail@ns.oeno.com>, Ville-Pertti Keinonen writ es: >> The easiest way to detect this DOS is probably to keep track of the >> >> namecache entries >> ----------------- >> live vnodes >> >> ratio, and enforce an upper limit on it. > >That seems like a reasonable approach. > >If you want to include the other attack I mentioned (I just tried it, >got up to > 160000 vnodes), then you have to exclude vnodes that are >only live because of v_cache_src entries from the count. It should probably only count vnodes in "actual" use. >BTW: You still haven't committed the v_id patch I sent you in May. Is >there any specific reason for this? I seem to remember we stalled on some detail which wouldn't or couldn't work was it NFS ? -- Poul-Henning Kamp FreeBSD coreteam member phk@FreeBSD.ORG "Real hackers run -current on their laptop." FreeBSD -- It will take a long time before progress goes too far! To Unsubscribe: send mail to majordomo@FreeBSD.org with "unsubscribe freebsd-current" in the body of the message
Want to link to this message? Use this URL: <https://mail-archive.FreeBSD.org/cgi/mid.cgi?25864.938522052>