On Nov 8, 2005, at 12:46, Marc Olzheim wrote:
Being on the wrong end of a distributed tcp syn flood attack atm. on the machine I'm mailing from, is probably enough to convince me of its use.
The change we are discussing is not protecting you from SYN floods, it is supposed to protect you from spoofed RSTs.
Lars -- Lars Eggert NEC Network Laboratories