True. I think the nice thing I saw about a properly functioning cfthrottle was that when thresholds were met, OpenBD could serve up a specific error. If it's done at the firewall, etc. it's not so easy.
Aug 22, 2011 at 1:54 PM, Matthew Woodward <[email protected]> wrote: > On Mon, Aug 22, 2011 at 11:49 AM, Jason King <[email protected]> wrote: >> >> Well.. From a management perspective, it would nice if this was all >> handled by the webserver > > Which it probably can be. OpenBD isn't your web server. > Just to play devil's advocate there's a "right tool for the job" argument > here. "But that's another box" arguments don't hold a lot of water for me > when you're trying to solve problem X and there's a specific tool to solve > problem X that just happens to need to run on another box. > Frankly if you have something on the public internet and DON'T have any IDS > in place you're asking for trouble. > -- > Matthew Woodward > [email protected] > http://blog.mattwoodward.com > identi.ca / Twitter: @mpwoodward > > Please do not send me proprietary file formats such as Word, PowerPoint, > etc. as attachments. > http://www.gnu.org/philosophy/no-word-attachments.html > > -- > official tag/function reference: http://openbd.org/manual/ > mailing list - http://groups.google.com/group/openbd?hl=en > -- official tag/function reference: http://openbd.org/manual/ mailing list - http://groups.google.com/group/openbd?hl=en
