[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Protecting a slapd Server from Excessive Client Queries

To: "Ramseyer, Ken" <ken.ramseyer@lmco.com>
Subject: Re: Protecting a slapd Server from Excessive Client Queries
From: "Kurt D. Zeilenga" <Kurt@OpenLDAP.org>
Date: Tue, 07 Feb 2006 15:13:09 -0800
Cc: OpenLDAP-software@OpenLDAP.org
In-reply-to: <32BA9E46B8BE584A8EEA3D355C00B6339170D0@emss09m08.us.lmco.c om>
References: <32BA9E46B8BE584A8EEA3D355C00B6339170D0@emss09m08.us.lmco.com>

At 11:27 AM 2/7/2006, Ramseyer, Ken wrote:
>Can OpenLDAP (slapd) be protected from a runaway client process that
>repeatedly calls ldap_search thousands of times a second?

IIRC, slapd(8) will attempt to prevent a single connection to consume
more than half thread pool.  Of course, client which consumes
half the thread pool for even short periods of time can adversely
affect service to other clients.

Beyond this, no other slapd(8) features come to mind.

Kurt

Follow-Ups:
- Re: Protecting a slapd Server from Excessive Client Queries
  - From: Howard Chu <hyc@symas.com>

References:
- Protecting a slapd Server from Excessive Client Queries
  - From: "Ramseyer, Ken" <ken.ramseyer@lmco.com>

Prev by Date: Re: Configuration of Single user causes
Next by Date: Re: Protecting a slapd Server from Excessive Client Queries
Index(es):
- Chronological
- Thread