httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Jim Jagielski <...@jaguNET.com>
Subject Re: Mitigating the Slowloris DoS attack
Date Mon, 29 Jun 2009 17:08:15 GMT

On Jun 24, 2009, at 5:18 AM, Joe Orton wrote:
>
> Regardless, the only thing I've ever wanted to see changed in the  
> server
> which would somewhat mitigate this type of attack is to have coarser
> granularity on timeouts, e.g. per-request-read, rather than simply
> per-IO-operation.

++1. Timeout would set universal defaults and we could then
have something like Timeout ReqRead 2 to provide further refinement.


Mime
View raw message