An observation about client certificates

[Sean Conner]

It was thus said that the Great Dave Huseby once stated:
> 
> I think by default, any logging we do should be at a bare minimum and not
> contain the IP address of the client or any other data that would link the
> log line to them. I added logging to my hacked up version of Pollux but it
> only logs which page was loaded and when. My purpose was to track basic
> traffic and any errors that occur and nothing else.

  I am not trolling here.  The scenaio I'll describe is *actually* happening
to me as I write this message.

  Over the past hour, I've over 2,700 requests in my client torture test,
specifically, test #22, leading into the "Redirect From Hell" portion.  If
it was going any faster, I'd probably block it with the firewall, but my
question to Dave is, what happens on your server when something like this
happens?  You don't log the IP, so now what?  

  -spc (I'll go under my bridge now ... )