[103280] in North American Network Operators' Group
Re: Mitigating HTTP DDoS attacks?
daemon@ATHENA.MIT.EDU (Peter Dambier)
Tue Mar 25 04:25:38 2008
Date: Tue, 25 Mar 2008 09:22:33 +0100
From: Peter Dambier <peter@peter-dambier.de>
Reply-To: peter@peter-dambier.de
To: nanog@merit.edu
In-Reply-To: <20080325000945.GA62129@pit.databus.com>
Errors-To: owner-nanog@merit.edu
> On Mon, Mar 24, 2008 at 11:34:58PM +0000, Paul Vixie wrote:
>> i only use or recommend operating systems that have their own host based
>> firewalls.
That was exactly my problem.
Barney Wolff wrote:
> What finally broke was doing a table list, possibly because the
> command prints in sorted order.
Happened to me too.
First step: Borrowed "sort.c" from Minix.
Next step: Large swap file.
Finally: changed the distribution.
sort is one the biggest hidden problems. There are broken sorts around,
I guess some of the problems are character set specific. There is no
more EBCDIC but UTF-8 and UTF-16 are even worse.
Related to sort, you may have more than enough memory or swap but your
process wont get it.
You can avoid sorting by looking into the "/proc" files.
proc2pl might get you ideas, from the ISAON tools on
http://iason.site.voila.fr/
You might even sort or grep the output and you can always do that
on a machine that is not your router.
Kind regards
Peter
--
Peter and Karin Dambier
Cesidian Root - Radice Cesidiana
Rimbacher Strasse 16
D-69509 Moerlenbach-Bonsweiher
+49(6209)795-816 (Telekom)
+49(6252)750-308 (VoIP: sipgate.de)
mail: peter@peter-dambier.de
http://iason.site.voila.fr/
https://sourceforge.net/projects/iason/
http://www.cesidianroot.com/
