> I know that you hate further tips on doing this differently, but I would > propose to > simply lower the value of Timeout and KeepAliveTimeout to 3 seconds. > Even if it would be possible to write a filter which does this job (which I > doubt) you > would have to define some kind of "Timeout" after that you regard a > connection as malicious. > But from a quick view in the code I assume that you would need to improve the > logging > in cases of HTTP_REQUEST_TIME_OUT and aborted connections such that you can > use it for your > firewall to lock out these IP's. >
Thanks for your thoughts. > [..cut..] > > Regards > > R�diger >
