[nycbug-talk] OpenBSD + PF "whitepapers"

Charles Sprickman spork
Tue Jan 31 17:35:54 EST 2006


Hi all,

The guy that runs BroadbandReports.com was fishing around for something to 
help protect him from DDoS attacks.  He's aware that once his pipe is full 
(100Mb/s) the game is over, but he's been having trouble getting the Linux 
stuff he's using to not choke up on a 50-60 Mb/s attack at 100Kp/s.

He seems slightly intrigued by OpenBSD, but doubts that it would perform 
any better than Linux 2.6.x w/ipchains and some "fast block" module.

Anyone have pointers to the following:

-corporate style whitepaper touting OpenBSD/PF for DoS protection
-articles about OpenBSD protecting web farms from DoS based on real-life 
experiences
-list of folks (preferably with close ties to OBSD) that do consulting 
work in this vein
-???

Thanks,

Charles




More information about the talk mailing list