[EXIM] Restricting connections from a single IP address

Top Page
This message is part of the following thread:
M-\the complete thread tree sorted by date
M.M 
M\M\Piete Brooks at ->
Delete this message
Reply to this message
Author: Nigel Metheringham
Date:  
To: Philip Hazel
CC: exim-users
Subject: [EXIM] Restricting connections from a single IP address
We have recently hit problems with someone doing a denial of service on
our servers by opening a few hundred simultaneous connections to our boxes.

I'm considering the idea of having a mechanism for enforcing a maximum
number of connections from a specific IP, however this feels like a
significant change to exim (keeping per connection state in the central
daemon, mopping up when children die etc).

Any comments? 

    Nigel.
-- 
[ Nigel.Metheringham@???   -  Systems Software Engineer ]
[ Tel : +44 113 207 6112                   Fax : +44 113 234 6065 ]
[      Real life is but a pale imitation of a Dilbert strip       ]




--
*** Exim information can be found at http://www.exim.org/ ***


This message was posted to the following mailing lists:
Exim-users
Mailing List Info | Nearby Messages		<-Re: [EXIM] one_time mailing list feature not workingRe: [EXIM] Restricting connections from a single IP address->
Tahini and Hummus and Cumin Development Archives administrated by cumin AdminsLurker (version 2.3)