> There is generally no such answer ("no") in the world of open source
> when it comes to features.
Ok, so the original question has been, if there is such a feature
built into the current squid version :-)
> It's not implemented in Squid as there is no known technical reason why
> one would like to limit the number of requests a client can send over a
> single persistent connection to Squid. So I am wondering why you would
> like to limit the number of requests per connection to see if there is
> something we have overlooked and there is a valid reason to have this
> feature implemented.
No, you don't have overlooked something - I need this because of some
strange attacks from outside, which make >1500 senseless requests per
persistent connection (and very fast). But when the connection is
closed, they don't try again (don't ask why - I don't know). So I wanted
to limit the number of requests per pconn, because it does not really
harm "regular" users, but keeps those "attacks" out.
And no, locking out the "bad" IPs is not that easy - every "attack"
comes from a different one :-)
Regards
-stefan-
Received on Wed Jan 10 2007 - 03:31:55 MST
This archive was generated by hypermail pre-2.1.9 : Thu Feb 01 2007 - 12:00:01 MST