My idea wasn't supposed to address the denial-of-service problem, it was supposed to solve the getting-bogged-down-in-requests problem.

Anyways, despite my ignorance, we have servers whose sole purpose is to process MySQL queries. Yipee. Leaving us with finding a feasible means of allowing this to be publicly accessible without it serving as the base of a denial of service attack. What if we forced queries to run at a really slow speed; in fact, people would have to put in their email addresses so they could be e-mailed the result? And once a limit has been reached for processor capability, the public query terminal would read something like "Sorry, but the query server is too busy now. Try again later."

On 10/26/07, Simetrical <Simetrical+wikilist@gmail.com> wrote:
On 10/26/07, James Hare <messedrocker@gmail.com> wrote:
> Does this *have* to be on the toolserver, or can we take the databases and
> put it on its own server dedicated for querying?

Of course you can.  Then those dedicated servers get DoS'd,
deliberately or otherwise, and you're back where you started.

_______________________________________________
Toolserver-l mailing list
Toolserver-l@lists.wikimedia.org
http://lists.wikimedia.org/mailman/listinfo/toolserver-l