[ENet-discuss] feature request: bandwidth throttling for each peer

Jay Sprenkle jsprenkle at gmail.com
Sun Oct 3 07:37:37 PDT 2010


Good morning,

If my reading is correct eNet (I'm still on version 1.2) does bandwidth
throttling at the host level not at the individual peer level.
I'd like to suggest adding throttling at the peer level.

I'm implementing a network api using enet and was concerned about potential
abuse and security.
To combat authentication brute force or dictionary attacks one pundit had
the suggestion:

 "A better strategy for blocking any brute force attack is to incrementally
delay the page
response after failed login attempts. After the first failed login attempt,
for example, the
response would be delayed by one second. After the second failed attempt,
the response
would be delayed by two seconds, and so on."

I can of course implement this in my own code but I also considered just
reducing the bandwidth available to
an attacker. This seemed like a good way to handle it. If the throttling is
done at the host level it reduces the
bandwidth for all users and not just the offender.

Thanks for your time. eNet is a great package.

-- 
---
"Is real reporting dead?  News at 11!"
-------------- next part --------------
An HTML attachment was scrubbed...
URL: <http://lists.cubik.org/pipermail/enet-discuss/attachments/20101003/2b3ba83e/attachment.html>


More information about the ENet-discuss mailing list