httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From fredk2 <>
Subject [users@httpd] Setting the Timeout directive to refrain a DoS attacks
Date Wed, 24 Jun 2009 23:09:57 GMT

Hi, says:

The TimeOut directive currently defines the amount of time Apache will wait
for three things
1. The total amount of time it takes to receive a GET request

1. seems to be misleading, tests with "Timeout 3" does not appear very
For example:
GET / HTTP/1.1
Host: foo
<sleep 2s>
X-a: b
<sleep 2s>

Such requests are not rejected after 3 seconds as expected.
Are we missing in Apache a timer for the header to complete ~ HeaderTimeout

Kind regards - Fred
View this message in context:
Sent from the Apache HTTP Server - Users mailing list archive at

The official User-To-User support forum of the Apache HTTP Server Project.
See <URL:> for more info.
To unsubscribe, e-mail:
   "   from the digest:
For additional commands, e-mail:

View raw message