<<<
Chronological Index
>>> <<<
Thread Index
>>>
Re: [ga] WLS proposal
Hello,
--- Rick Wesson <wessorh@ar.com> wrote:
> o registries have assumed they must allow DDoS attacks on their
> systems
> in the form of Add Storms.
Registries can easily throttle their connections, to permit no more
than X requests per second per registrar, where:
X = L/N
L = their maximum hardware limit on total requests per second
N = number of registrars (thus providing equal access)
It's not a DDoS attack if registrars are merely making their requests
at the maximum permitted rate. A registry can easily reduce that
permitted rate to an acceptable level.
If one does a search for "mod throttle" or "throttle ftp" or "throttle
apache" on Google, these aren't trailblazing ideas.
One sample link is: http://www.snert.com/Software/Throttle/
Of course, VGRS isn't running the shared registry using Apache, but the
ideas need only be slightly modified to implement in their systems. The
simplest of the solutions is probably the "Idle" policy, which only
requires that VGRS learn how to use the "sleep()" library function, or
its variants.
However, as VGRS has already admitted, registry load is no longer
problem, so I'm not sure why the "add storms" topic keeps cropping up.
See answer to Question B.2 at:
http://www.verisign-grs.com/wls_responses.pdf
Even B.3 says
"the registry load problems are solved....Registry load should not be a
criterion for determining the proper course of action regarding deleted
domain name registrations."
Conclusion: the Status Quo works great! Don't worry, be happy!
Sincerely,
George Kirikos
http://www.kirikos.com/
__________________________________________________
Do You Yahoo!?
Yahoo! - Official partner of 2002 FIFA World Cup
http://fifaworldcup.yahoo.com
--
This message was passed to you via the ga@dnso.org list.
Send mail to majordomo@dnso.org to unsubscribe
("unsubscribe ga" in the body of the message).
Archives at http://www.dnso.org/archives.html
<<<
Chronological Index
>>> <<<
Thread Index
>>>
|