W3C home > Mailing lists > Public > ietf-http-wg@w3.org > January to March 2012

Re: Review: http://www.ietf.org/id/draft-mbelshe-httpbis-spdy-00.txt

From: Eric Rescorla <ekr@rtfm.com>
Date: Wed, 29 Feb 2012 15:43:47 -0800
Message-ID: <CABcZeBMRPwJgGVV-95vj6asZfL8_pe0_5yZh-S+4D8vkLXZWZQ@mail.gmail.com>
To: Mike Belshe <mike@belshe.com>
Cc: Willy Tarreau <w@1wt.eu>, Amos Jeffries <squid3@treenet.co.nz>, ietf-http-wg@w3.org
On Wed, Feb 29, 2012 at 3:00 PM, Mike Belshe <mike@belshe.com> wrote:
> On Tue, Feb 28, 2012 at 10:49 PM, Willy Tarreau <w@1wt.eu> wrote:

>    b) Also note that for SPDY over SSL, you've got DoS countermeasures from
> the SSL layer at your disposal.  These are certainly going to slow down many
> attackers.  (It will also make some sites nervous - especially those that
> haven't hardened port 443 yet!)

Can you elaborate on what you have in mind in terms of SSL DoS countermeasures?

-Ekr
Received on Wednesday, 29 February 2012 23:44:54 GMT

This archive was generated by hypermail 2.2.0+W3C-0.50 : Friday, 27 April 2012 06:51:56 GMT