httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From sameer <sam...@c2.net>
Subject Re: Problems w/ deny
Date Tue, 07 Jan 1997 03:17:42 GMT
> 
> The nasty tools that lock up web server use SYN attacks.  Since the SYN

	"The" nasty tool. Opening up 10 TCP connections/second and
letting them sit is a perfectly valid denial of service attack against
Apache. -- MaxClients would get hit really quick.
	I agree that using packet filtering routers is the way to
prevent restricted hosts from getting into the server at all.
	I think the right solution to this attack is to not have a 5
minute timeout, actually.

-- 
Sameer Parekh					Voice:   510-986-8770
President					FAX:     510-986-8777
C2Net 		    C2Net is having a party: http://www.c2.net/party/
http://www.c2.net/				sameer@c2.net

Mime
View raw message