httpd-dev mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Reindl Harald <h.rei...@thelounge.net>
Subject Re: URL scanning by bots
Date Wed, 01 May 2013 12:06:31 GMT
Am 01.05.2013 14:00, schrieb Reindl Harald:
> here you have something to read and learn that more and more attacks
> are done this way by exhausting ressources without high bandwith and
> THIS are the real problems server-admins have to fight and not the noise
> you see on your small site
> 
> http://www.slashroot.in/slowloris-http-dosdenial-serviceattack-and-prevention

and if you not realize the context:

* your idea would lead at more open connections
* slowloris protection limits the connections per IP

your idea would lead in make connections from ISP gateways with
a lot of users behind coming from the same IP where most likely
some are part of a botnet fragile

that's the other side of the coin, besides the fact that this open
connectionbs are a huge problem in large enivironments, for the
sevrer itsellf as also for connection tracking on routers and
firewalls if the count would be more than uninteresting noise



Mime
View raw message