How to use cookie for request/conection limiting

[Arvind Jayaprakash]

On Oct 31, piavlo wrote:
>anomalizer Wrote:
>-------------------------------------------------------
>
>Now that I think about cookie based limiting again - it's not clear to
>me how new client connections will be handled, by the
>connection/request limiting modules, before the application assigns
>them a valid cookie?

Excellent point. You can never rate limit the connects. You always have
to accept the connection, inspect the cookie and then decide if you want
to service the request or not. The rate limiting is enforced at an
aplication level and not at a network level.