>I could leave the connection open without sending a response?
You may delay it for, say, 5 sec. But then I guess the vulnerability to
DDOS
increases (thousands of connections simultaneously). I'm not sure how much
of them is possible.
Well, this is possible, depending on how their are organized. Angus could
count the number of simultaneous connection and add trhe delay only if this
is below a level he select according to his server configuration. One
thousand of delayed connections is probably not an issue at all.
Or send a vast amount of rubbish data in response?
Maybe — if you have unlimited outgoing traffic. But no chances that
scanner software would
catch all of the rubbish sent. It could abort the connection after some
amount of data
received and leave your server sending something to nowhere.
You are right, probably the scanner would simply throw away any data and
probably close the connection. If the connection is not close, then data
sent by Angus will at least use bandwidth at their side (as well as at Angus
side).
--
francois.pie...@overbyte.be
The author of the freeware multi-tier middleware MidWare
The author of the freeware Internet Component Suite (ICS)
http://www.overbyte.be
--
To unsubscribe or change your settings for TWSocket mailing list
please goto http://lists.elists.org/cgi-bin/mailman/listinfo/twsocket
Visit our website at http://www.overbyte.be
