Good morning,<br><br>If my reading is correct eNet (I'm still on version 1.2) does bandwidth throttling at the host level not at the individual peer level.<br>I'd like to suggest adding throttling at the peer level.<br>
<br>I'm implementing a network api using enet and was concerned about potential abuse and security.<br>To combat authentication brute force or dictionary attacks one pundit had the suggestion:<br><br> "A better strategy for blocking any brute force attack is to incrementally delay the page<br>
response after failed login attempts. After the first failed login attempt, for example, the<br>response would be delayed by one second. After the second failed attempt, the response<br>would be delayed by two seconds, and so on."<br>
<br>I can of course implement this in my own code but I also considered just reducing the bandwidth available to<br>an attacker. This seemed like a good way to handle it. If the throttling is done at the host level it reduces the<br>
bandwidth for all users and not just the offender.<br><br>Thanks for your time. eNet is a great package.<br clear="all"><br>-- <br>---<br>"Is real reporting dead? News at 11!"<br>