[nycbug-talk] OpenBSD + PF "whitepapers"

Kevin Reiter tux
Tue Jan 31 21:22:32 EST 2006


Charles Sprickman wrote:
> Hi all,
> 
> The guy that runs BroadbandReports.com was fishing around for something to 
> help protect him from DDoS attacks.  He's aware that once his pipe is full 
> (100Mb/s) the game is over, but he's been having trouble getting the Linux 
> stuff he's using to not choke up on a 50-60 Mb/s attack at 100Kp/s.
> 
> He seems slightly intrigued by OpenBSD, but doubts that it would perform 
> any better than Linux 2.6.x w/ipchains and some "fast block" module.
> 
> Anyone have pointers to the following:
> 
> -corporate style whitepaper touting OpenBSD/PF for DoS protection
> -articles about OpenBSD protecting web farms from DoS based on real-life 
> experiences
> -list of folks (preferably with close ties to OBSD) that do consulting 
> work in this vein
> -???
> 
> Thanks,
> 
> Charles

A guy I used to know in Cali used to run theshell.com and now heads up a 
company that basically runs interference for DDoS attacks.  If I 
remember correctly, I just read something on another list that spoke 
about that.  He was (is?) heavy into OBSD and I think he's using that 
with his new service.  If I can dig up his e-mail address, I'll ping him 
and see if he'd be interested in sharing any info that might help.

I'd provide a URL, but I have to go back and do a lot of reading to find it.

Kev



More information about the talk mailing list