10 Mar
2000
10 Mar
'00
7:43 p.m.
On Fri, 10 Mar 2000, Scott Solmonson wrote:
Dan Hollis wrote:
I was thinking the exact same thing. The DoS'er would end up DoS'ing themselves. Since when does "same source address" mean "same client"? Ya- start redirecting everyone to an AOL proxy...
Referrer != forwarded-for. When we are talking about redirecting, we are talking about redirecting to the DoS'ers page. Not their client.
And all these depend on being able to identify "authentic" users-
Nope
I don't think that's going to happen- If the client is coded correctly you won't be able to tell at all-
Huh? The client is netscape or IE. I dont know of any way for javascript to override the headers the browser client sends. -Dan