[JDEV] Filling public server's disk?
David Waite
mass at akuma.org
Thu Jan 8 10:49:38 CST 2004
This is why most public services now use web sites for registration
rather than having it in-protocol, and add things like word entry and
email address verification.
If I had a public server and wanted to keep in-band registration, I
would probably require email verification. However, I don't know if
iq:register currently has behavior defined for indicating that to a
user/client.
-David Waite
On Jan 8, 2004, at 9:10 AM, Matthias Wimmer wrote:
> Hi David!
>
> David Waite schrieb am 2004-01-08 07:55:17:
>> Actually, in Today's DDoS world you really should not rely on IP rate
>> limiting for DoS prevention :-)
>
> How would you prevent a Registration-DoS? By limiting the
> total number of allowed registrations per time? That would even make it
> easier to make a DoS against the server (or at least against new
> registrations on it).
>
>
> Tot kijk
> Matthias
>
> --
> Fon: +49-(0)70 0770 07770 http://matthias.wimmer.name/
> HAM: DB1MW xmpp:mawis at charente.de
More information about the JDev
mailing list