On 2/8/07, Greg Sims <[EMAIL PROTECTED]> wrote:
This consumption of server resource by one user is unfair to everyone else trying to use http at the same time. Is it possible to control resource allocation so that it is fair to all users?
The user in question is using some kind of download accelerator that uses multiple byte-range requests to access the same file simultaneously over multiple connections. In general, these accelerators are designed simply to squeeze out other users and hence get faster downloads. It should be considered and handled like a denial-of-service attack. Some documentation on that is here: http://httpd.apache.org/docs/trunk/misc/security_tips.html#dos In general, either use a firewall to restrict number of connections per IP, or use a third-party module to do the same. See http://modules.apache.org/ Joshua
