[quake3-bugzilla] [Bug 5954] DDOS with getchallenge
bugzilla-daemon at icculus.org
bugzilla-daemon at icculus.org
Mon Jun 10 15:37:11 EDT 2013
https://bugzilla.icculus.org/show_bug.cgi?id=5954
Tim Angus <tim at ngus.net> changed:
What |Removed |Added
----------------------------------------------------------------------------
CC| |tim at ngus.net
--- Comment #1 from Tim Angus <tim at ngus.net> ---
I've added rate limiting to getchallenge in 7b15415. As far as the DDoSing
goes, the numbers used are deliberately not that aggressive. The reason for
this is that it is impossible to tell the difference between legitimate inbound
requests from genuine clients and those from a DDoS cluster. If you prevent the
DDoS, you also prevent legitimate use of your server. By all means try playing
with the numbers if you think you have a set which is acceptably more
aggressive without disrupting normal access. The existing limits were all
picked with a finger in the air.
--
You are receiving this mail because:
You are the QA Contact for the bug.
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://icculus.org/pipermail/quake3-bugzilla/attachments/20130610/b90d1094/attachment.html>
More information about the quake3-bugzilla
mailing list