[Date Prev][Date Next] [Chronological] [Thread] [Top]

Re: Protecting a slapd Server from Excessive Client Queries

John Madden wrote:
>>As Kurt already mentioned, nothing else comes to mind.
> How 'bout you go outside of OpenLDAP and look at the network level?  Why not
> restrict access by shaping down this client's traffic so much it can't make so
> many requests?

Or how about deploying separate replicas?

1. Some replicas for limited anon LDAP access and potentially
misbehaving clients.
2. And the important and thoroughly tested clients should be authorized
to access protected replicas of higher service-level.

Ciao, Michael.