Comment 1 for bug 1549855

Since this report concerns a possible security risk, an incomplete security advisory task has been added while the core security reviewers for the affected project or projects confirm the bug and discuss the scope of any vulnerability along with potential solutions.

I fail to see why a single connection is more difficult to detect compared to multiple connection... This seems to be a class B2 type of bug according to VMT taxonomy ( https://security.openstack.org/vmt-process.html#incident-report-taxonomy ), the bad design being the lack of rate-limiting.