[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: data mining

To: Mark Adamson <adamson@andrew.cmu.edu>
Subject: Re: data mining
From: Kervin Pierre <kpierre@fit.edu>
Date: Mon, 08 Apr 2002 17:58:40 -0400
Cc: openldap-devel@OpenLDAP.org
References: <Pine.GSO.4.43L-024.0204081656300.13463-100000@nil.andrew.cmu.edu>
User-agent: Mozilla/5.0 (X11; U; Linux i686; en-US; rv:0.9.9+) Gecko/20020329

With IP tables ( netfilter ) you can use do rate limiting. http://www.netfilter.org/documentation/HOWTO//packet-filtering-HOWTO-7.html#ss7.3

Just check out the 'limit' match extension.

What I'd like to see is 'views' support, as in BIND. Where you would able to state in an ACL "host on my network see these attributes, but all other hosts see only these".

--Kervin

Mark Adamson wrote:

Last week, some pinhead in Las Vegas made a few thousand queries to our
LDAP server to gather as many Email addresses as he could, and then sent
Email to all of them advertising his web page about his little yacht
dream. Is there anything in OpenLDAP code or RFC's that deals with
throttling back service to "abusive" clients?  Has anyone privately added
code to implement such a concept?

-Mark Adamson
 Carnegie Mellon


--
http://linuxquestions.org/ - Ask linux questions, give linux help.
http://splint.org/ - Write safe C code. splint source-code analyzer.

Follow-Ups:
- Re: data mining
  - From: Pierangelo Masarati <masarati@aero.polimi.it>

References:
- data mining
  - From: Mark Adamson <adamson@andrew.cmu.edu>

Prev by Date: data mining
Next by Date: Re: data mining
Index(es):
- Chronological
- Thread