> ..an idea: limit the number of connections to a level the authorized > dos attack app _can_ handle, and to reject or reset rather than > dropping connections? That is what I hope to do with the iptables box running iplimit. Except instead of rejecting the connections Im going to redirect users to a static page that just pretty much says "we're busy try again"
