Good morning, If my reading is correct eNet (I'm still on version 1.2) does bandwidth throttling at the host level not at the individual peer level. I'd like to suggest adding throttling at the peer level.
I'm implementing a network api using enet and was concerned about potential abuse and security. To combat authentication brute force or dictionary attacks one pundit had the suggestion: "A better strategy for blocking any brute force attack is to incrementally delay the page response after failed login attempts. After the first failed login attempt, for example, the response would be delayed by one second. After the second failed attempt, the response would be delayed by two seconds, and so on." I can of course implement this in my own code but I also considered just reducing the bandwidth available to an attacker. This seemed like a good way to handle it. If the throttling is done at the host level it reduces the bandwidth for all users and not just the offender. Thanks for your time. eNet is a great package. -- --- "Is real reporting dead? News at 11!"
_______________________________________________ ENet-discuss mailing list [email protected] http://lists.cubik.org/mailman/listinfo/enet-discuss
