OASIS Mailing List ArchivesView the OASIS mailing list archive below
or browse/search using MarkMail.


Help: OASIS Mailing Lists Help | MarkMail Help



   RE: [xml-dev] Re: Can A Web Site Be Reliably Defended Against DoS Atta

[ Lists Home | Date Index | Thread Index ]

> Well, along these lines WordPress, the blog software that I use,
> prevents comment spam by making sure that users with the same IP can't
> post more often than every 30 seconds. This makes spambots useless and
> expensive to run.
> Same can be applied to web application protection, i.e. a single IP
> cannot make more than N hits/second or something of that sort.

Nope, proxies are readily available. Interestingly the world of blogging
recently received a nice new threat, crapflooding through trackback. Shelley
has the explanation and relevant links at [1].

Jacques Distler offered a simple explanation for the phenomenon in general -
software monoculture. In the case of most virus problems, the monoculture is
essentially that of Microsoft. But the web itself is built on the
monoculture of TCP/IP, so the problem runs deeper, so even without the Borg
we'd still have to cross this bridge sooner or later. Or rather stop
unwanted packets crossing it.




News | XML in Industry | Calendar | XML Registry
Marketplace | Resources | MyXML.org | Sponsors | Privacy Statement

Copyright 2001 XML.org. This site is hosted by OASIS