Someone very kindly tried a DOS attack on a web server of ours recently.
Basically they opened a pile of connections to a server but sent no data
down them. To make matters worse they then disconnected their modem
connection leaving a couple of hundred hanging connections....
On a non-ssl connection, setting TimeOut lower helps mitigate against this
by killing idle connections. However this option has no apparent effect
on an SSL connection. Is there an analog to this... or a way of changing
stuff down in SSLeay?
On a related note, is there a means to limit the number of live
connections from a particular IP address? [more a standard apache rather
than mod_ssl issue].
I am using 1.3.3 with mod_ssl 2.1.5
Thanks
Nigel.
--
[ [EMAIL PROTECTED] - Systems Software Engineer ]
[ Tel : +44 113 207 6112 Fax : +44 113 234 6065 ]
[ Real life is but a pale imitation of a Dilbert strip ]
[ We're recruiting http://www.theplanet.net/profile/recruit.htm ]
______________________________________________________________________
Apache Interface to SSLeay (mod_ssl) www.engelschall.com/sw/mod_ssl/
Official Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
