Neohapsis is currently accepting applications for employment. For more information, please visit our website www.neohapsis.com or email firstname.lastname@example.org
From: Chris Evans (chrisscary.beasts.org)
Date: Thu Mar 01 2001 - 07:48:07 CST
On Thu, 1 Mar 2001, Solar Designer wrote:
> On Wed, Feb 28, 2001 at 10:16:47AM +0100, Olaf Kirch wrote:
> > Here's something I haven't seen before which I find sort of cool
> > (rate limiting grouped by source IP network)...
> I've been considering this for popa3d's standalone mode and for
> xinetd (both already have a per source IP limit). xinetd should
> implement some defense against the low syslogd bandwidth problem
> first (popa3d already has that).
Better yet, fix (or replace!!) syslogd.
Otherwise you'll tend towards a state where every security conscious
daemon implements its own workarounds of varying quality. Complexity in
daemons to work around poor syslogd quality? No thanks.
Also, you'll encourage the prolonged use of crap syslogd's.