1594 – Randomize the default SSLIOP accept() timeout value.

Bug 1594 - Randomize the default SSLIOP accept() timeout value.

Summary: Randomize the default SSLIOP accept() timeout value.

Status:	NEW

Alias:	None

Product:	TAO
Classification:	Unclassified
Component:	SSLIOP Pluggable Protocol (show other bugs)
Version:	1.3.3
Hardware:	All All

Importance:	P3 enhancement
Assignee:	DOC Center Support List (internal)

URL:

Duplicates (1):	1595 (view as bug list)
Depends on:
Blocks:

Reported:	2003-09-18 17:07 CDT by Ossama Othman
Modified:	2006-04-21 12:15 CDT (History)
CC List:	0 users

See Also:

Attachments
Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.

Description Ossama Othman 2003-09-18 17:07:03 CDT

It may be useful to randomize the default accept() timeout value instead of
using a constant default (currently 10 seconds).  The idea is to prevent
potential timed DoS attacks.  For example, the default accept() timeout could be
a random value between some range such as 8 and 12.

Comment 1 Ossama Othman 2003-10-01 09:54:47 CDT

*** Bug 1595 has been marked as a duplicate of this bug. ***

Comment 2 Ossama Othman 2003-10-12 01:27:55 CDT

Mine.