Windows NT Terminal Server performs extra work when a client opens a new connection but before it is authenticated, allowing for a denial of service.