httpd-users mailing list archives

Site index · List index
Message view « Date » · « Thread »
Top « Date » · « Thread »
From Bastien LEGRAS <bastien.leg...@capgemini.com>
Subject [users@httpd] Apache 1.x & 2.x vulnerability against simple DoS attacks
Date Tue, 23 Jun 2009 13:11:05 GMT
Hi,

I just tried the perl script against my 2.2 apache under ubuntu 8.04 and
found I could make my apache server unavailable in 30 sec with the little
hack script you can find here http://ha.ckers.org/slowloris/

Has anyone heard of a configuration or a ongoing fix to protect Apache
against such attacks ?

Thanks

-- 
Cordialement / Best Regards

Bastien LEGRAS






This message contains information that may be privileged or confidential and is the property
of the Capgemini Group. It is 
intended only for the person to whom it is addressed. If you are not the intended recipient,
you are not authorized to 
read, print, retain, copy, disseminate, distribute, or use this message or any part thereof.
If you receive this message 
in error, please notify the sender immediately and delete all copies of this message.

Mime
View raw message