Comment Re:Operation Payback never hit DNS hard (Score 1) 206
Limiting connections from a host or network can have its uses - or be an incredibly bad idea - but it doesn't have anything to do with sockstress or slowloris style approaches in particular. these approaches minimize the cost per connection for the attacker, limiting the number of connections in no way lowers that proportional benefit.
Limiting the number of connections per host or network can just make an attack more successful.. For example the dorm I lived in when I started grad school was NATed behind a tiny handful of IP's, with source connection limiting now one or a few attackers can deny service to the entire building.