id	author	title	date	pages	extension	mime	words	sentences	flesch	summary	cache	txt
blog-dshr-org-5101		DSHR's Blog: Effort Balancing And Rate Limits			.html	text/html	1624	310	82	DSHR's Blog: Effort Balancing And Rate Limits And Dan Goodin reports on the latest technique the DDOS-ers are using in DDoSers are abusing Microsoft RDP to make attacks more powerful: I don't know why it took me so long to figure it out, but reading Goodin's post I suddenly realized that techniques we described in Impeding attrition attacks in p2p systems, a 2004 follow-up to our award-winning 2003 SOSP paper on the architecture of the LOCKSS system, can be applied to preventing systems from being abused by DDOS-ers. Among the LOCKSS system's defenses against abuse are two relevant to DDOS prevention, rate limits and effort balancing. Engineering economics requires that the cost in CPU, memory bandwidth, and memory storage of any new state added for rate limiting be insignificant compared with an attacker's effort. The reason RDP can be used to amplify a DDOS attack is that, as Goodin wrote:	./cache/blog-dshr-org-5101.html	./txt/blog-dshr-org-5101.txt