1. A process cartridge that is configured to be detachably installed in an image forming apparatus, comprising:
a frame that has an opening that is long in a predetermined direction;
a photosensitive drum that is held in the frame, a portion of a surface of the photosensitive drum being opposite to the opening of the frame, the photosensitive drum extending along a longitudinal direction of the opening; and
a protection member that has:
a linear body portion extending in the longitudinal direction; and
a support portion extending from an end of the linear body portion in a direction perpendicular to the longitudinal direction,
wherein
the support portion is supported on the frame so as to rotate about an axis that extends along the longitudinal direction, and
the linear body portion is movable between a protecting position and a retreat position, the protecting position where the liner body portion faces the opening in such a state that the liner body portion is not in contact with the frame, the retreat position where the liner body portion faces a peripheral portion of the opening of the frame.
2. The process cartridge according to claim 1,
wherein
a rotational center of the support portion is disposed on an axis of the photosensitive drum.
3. The process cartridge according to claim 1, comprising,
a lock member that is configured to fix the protection member in the protecting position, the lock member being provided on one side surface of the frame in the longitudinal direction.
4. The process cartridge according to claim 3,
wherein
the lock member fixes the protection member in the protecting position by holding both sides of the support portion in a rotational direction of the support portion.
5. The process cartridge according to claim 3,
wherein
at least a part of the lock member is overlapped with the photosensitive drum as viewed from the longitudinal direction of the photosensitive drum.
6. The process cartridge according to claim 5,
wherein
the lock member is configured to be movable along a facing direction in which the photosensitive drum and the opening face each other, and
when the lock member is disposed in a position that is closest to the opening in the facing direction, the lock member fixes the protection member in the protecting position and an end portion of the lock member which faces the opening is disposed closer to the opening than the rotational center of the support portion.
7. The process cartridge according to claim 1,
wherein
a cut-out portion is formed on the periphery portion of the opening of the frame, the body portion is accommodated in the cut-portion when the protection member is displaced in the retreat position.
8. The process cartridge according to claim 1,
wherein
the protection member is formed by bending a linear member that has a circular cross section.
9. The process cartridge according to claim 1, further comprising,
a controllable portion that is fixed on the protection member and is operable to move the protection member.
10. An image forming apparatus comprising:
a process cartridge; and
an installation member into which the process cartridge is installed,
wherein
the process cartridge comprises:
a frame that has an opening that is long in a predetermined direction;
a photosensitive drum that is held in the frame, a portion of a surface of the photosensitive drum being opposite to the opening of the frame, the photosensitive drum extending along a longitudinal direction of the opening;
a protection member that has:
a linear body portion extending in the longitudinal direction; and
a support portion extending from an end of the linear body portion in a direction perpendicular to the longitudinal direction,
the support portion being supported on the frame so as to rotate about an axis that extends along the longitudinal direction, the linear body portion being movable between a protecting position and a retreat position, the protecting position where the liner body portion faces the opening in such a state that the liner body portion is not in contact with the frame, the retreat position where the liner body portion faces a peripheral portion of the opening of the frame; and
a controllable portion that is fixed on the protection member and is operable to move the protection member,
wherein
the installation member comprises:
a controlling portion that is configured to move the protection member from the protecting position to the retreat position by pressing the controllable portion to an upstream side in an installing direction of the process cartridge when the process cartridge is installed into the installation member.
11. The image forming apparatus according to claim 10,
wherein
the process cartridge is installed in the installation member from an opening side thereof,
the process cartridge comprise:
a lock member that is provided on one side surface of the frame in the longitudinal direction, the lock member configured to be movable along a facing direction in which the photosensitive drum and the opening face each other, the lock member configured to fix the protection member in the protecting position and an end portion of the lock member which faces the opening being disposed closer to the opening than the rotational center of the support portion when the lock member is disposed in a position that is closest to the opening in the facing direction; and
wherein
the installation member comprises:
a release portion that is configured to release a fixation of the protection member by the lock member by pressing the lock member to an upstream side in the installing direction of the process cartridge when the process cartridge is installed into the installation member.
12. The image forming apparatus according to claim 10, comprising,
an apparatus main body, and
wherein
the installation member is a drawer frame that is removably installed in the apparatus main body.
13. An image forming apparatus comprising:
an apparatus main body;
a drawer frame that is removably installed in the apparatus main body; and
a process cartridge that is detachably installed in the drawer frame in such a state that the drawer frame is drawn out of the apparatus main body;
wherein
the process cartridge comprises:
a frame that has an opening that is long in a predetermined direction;
a photosensitive drum that is held in the frame, a portion of a surface of the photosensitive drum being opposite to the opening of the frame, the photosensitive drum extending along a longitudinal direction of the opening;
a protection member that has:
a linear body portion extending in the longitudinal direction; and
a support portion extending from an end of the linear body portion in a direction perpendicular to the longitudinal direction,
the support portion being supported on the frame so as to rotate about an axis that extends along the longitudinal direction, the linear body portion being movable between a protecting position and a retreat position, the protecting position where the liner body portion faces the opening in such a state that the liner body portion is not in contact with the frame, the retreat position where the liner body portion faces a peripheral portion of the opening of the frame; and
a controllable portion that is fixed on the protection member and is operable to move the protection member,
wherein
the apparatus main body comprises:
a controlling portion that is configured to move the protection member from the protecting position to the retreat position by pressing the controllable portion to an upstream side in an installing direction of the drawer frame in response to an installing operation of the drawer frame into the apparatus main body.
14. The image forming apparatus according to claim 13,
wherein
the process cartridge is installed in the drawer frame from an opening side thereof,
the process cartridge comprise:
a lock member that is provided on one side surface of the frame in the longitudinal direction, the lock member configured to be movable along a facing direction in which the photosensitive drum and the opening face each other, the lock member configured to fix the protection member in the protecting position and an end portion of the lock member which faces the opening being disposed closer to the opening than the rotational center of the support portion when the lock member is disposed in a position that is closest to the opening in the facing direction; and
wherein
the drawer frame comprises:
a release portion that is configured to release a fixation of the protection member by the lock member by pressing the lock member to an upstream side in the installing direction of the process cartridge when the process cartridge is installed into the drawer frame.
The claims below are in addition to those above.
All refrences to claim(s) which appear below refer to the numbering after this setence.
1. A method for protecting a server from denial of service attacks, comprising:
initializing in a proxy authentication server a set of one or more filter rules, said filter rules defining login frequencies permitted for specified classes of users;
maintaining in said proxy authentication server an authentication request table, said authentication request table including authentication tuples, each tuple including an authentication request user identifier and authentication request time for users submitting authentication requests;
receiving an authentication request from a client, said authentication request including a user identifier;
responsive to receiving said authentication request from a client, searching said authentication request table for tuples for said client;
responsive to finding one or more tuples for said client, applying said filter rules to said tuples;
responsive to said tuple failing a filter rule, rejecting said authentication request in a response message to said client server;
responsive to said tuple passing all relevant filter rules, directing said authentication request to an authentication server for authenticating said user.
2. The method of claim 1, responsive to said tuple passing all relevant filter rules, said proxy authentication server passing said authentication request directly to said authentication server, and receiving and passing directly to said client server an authentication response from said authentication server.
3. The method of claim 1, responsive to said tuple passing all relevant filter rules, said proxy authentication server returning to said client a redirect response for instructing said client to direct said authentication request to said authentication server.
4. The method of claim 1, at least one said filter rule specifying a time out value, said proxy authentication server responsive to an authentication request failing a filter rule with a time out value directing said authentication request to said authentication server upon expiration of said time out.
5. A program storage device readable by a machine, tangibly embodying a program of instructions executable by a machine to perform operations for protecting a server from denial of service attacks, said operations comprising:
initializing in a proxy authentication server a set of one or more filter rules, said filter rules defining login frequencies permitted for specified classes of users;
maintaining in said proxy authentication server an authentication request table, said authentication request table including authentication tuples, each tuple including an authentication request user identifier and authentication request time for users submitting authentication requests;
receiving an authentication request from a client, said authentication request including a user identifier;
responsive to receiving said authentication request from a client, searching said authentication request table for tuples for said client;
responsive to finding one or more tuples for said client, applying said filter rules to said tuples;
responsive to said tuple failing a filter rule, rejecting said authentication request in a response message to said client server;
responsive to said tuple passing all relevant filter rules, directing said authentication request to an authentication server for authenticating said user.
6. The program storage device of claim 5, said operations further including responsive to said tuple passing all relevant filter rules, said proxy authentication server passing said authentication request directly to said authentication server, and receiving and passing directly to said client server an authentication response from said authentication server.
7. The program storage device of claim 5, said operations further including responsive to said tuple passing all relevant filter rules, said proxy authentication server returning to said client a redirect response for instructing said client to direct said authentication request to said authentication server.
8. The program storage device of claim 5, at least one said filter rule specifying a time out value, said operations further comprising, responsive to an authentication request failing a filter rule with a time out value, directing said authentication request to said authentication server upon expiration of said time out.
9. A system for protecting a client application server from denial of service attacks, comprising:
a proxy authentication server for maintaining a set of one or more authentication rules and an authentication request table; said authentication request table including authentication tuples, each tuple including an authentication request user identifier and authentication request time for users submitting authentication requests; said filter rules defining login frequencies permitted for specified classes of users
an authentication server;
said client server responsive to an authentication request from a user including a user identifier for directing said authentication request to said proxy authentication server;
said proxy authentication server responsive to receiving said authentication request further for searching said authentication request table for tuples for said client; responsive to finding one or more tuples for said client, applying said filter rules to said tuples; responsive to said tuple failing a filter rule, rejecting said authentication request in a response message to said client server; and responsive to said tuple passing all relevant filter rules, directing said authentication request to an authentication server for authenticating said user.
10. The system of claim 9, said proxy authentication server, responsive to said tuple passing all relevant filter rules, further for passing said authentication request directly to said authentication server, and receiving and passing directly to said client server an authentication response from said authentication server.
11. The system of claim 9, said proxy authentication server, responsive to said tuple passing all relevant filter rules, further for returning to said client a redirect response for instructing said client to direct said authentication request to said authentication server.
12. The system of claim 9, at least one said filter rule specifying a time out value, said proxy authentication server responsive to an authentication request failing a filter rule with a time out value further for directing said authentication request to said authentication server upon expiration of said time out.
13. A program storage device readable by a machine, tangibly embodying a program of instructions executable by a machine to perform operations for protecting a server from denial of service attacks, said operations comprising
providing a proxy authentication server having an authentication request history table;
maintaining in said table recent authentication requests to a second server, including user ID and time of each of the recent authentication requests;
receiving a subsequent authentication request at said proxy authentication server; and determining whether to forward for authentication said subsequent authentication request to said second server based on a pre-defined filtering rule(s) and said user ID and time of authentication request in said authentication request history table.
14. A computer program product for protecting a server from denial of service attacks according to the method comprising:
providing a proxy authentication server having an authentication request history table;
maintaining in said table recent authentication requests to a second server, including user ID and time of each of the recent authentication requests;
receiving a subsequent authentication request at said proxy authentication server; and determining whether to forward for authentication said subsequent authentication request to said second server based on a pre-defined filtering rule(s) and said user ID and time of authentication request in said authentication request history table.