2007/11/18, Joshua Slive [EMAIL PROTECTED]:
See:
http://httpd.apache.org/docs/trunk/misc/security_tips.html#dos
The standard solution is a simple firewall rule to control number of
connections per ip at some reasonable level.
I already thought about using a firewall rule. Although it could
2007/11/19, Christian Folini [EMAIL PROTECTED]:
As I understand the issue it's a very simple DoS as it neither does
require a lot of cpu nor bandwidth on the client side.
Is there a proper name for this kind of attack. I am not sure
the original question was referring to a real attack.
2007/11/19, Greg Boyington [EMAIL PROTECTED]:
On Nov 19, 2007 3:21 AM, Christian Folini [EMAIL PROTECTED] wrote:
Hey Greg,
could you elaborate on this? How would you prevent this
attack with mod_access?
In one case where an attack was under way but I didn't have access to
the firewall,
2007/11/19, Nick Kew [EMAIL PROTECTED]:
On Mon, 19 Nov 2007 20:19:20 +0100
Ben Macintosh [EMAIL PROTECTED] wrote:
I already thought about using a firewall rule. Although it could be
quite difficult to get it right. As every malicious request blocks a
slot for 5 minutes there hasn't got
2007/11/19, Joshua Slive [EMAIL PROTECTED]:
On Nov 19, 2007 3:19 PM, Ben Macintosh [EMAIL PROTECTED] wrote:
Thanks for pointing me to the right direction - never heard about
AcceptFilter before.
Interesting, because it is specifically suggested in the link that I
sent you two days ago
Hi
I'm currently facing a problem which I can't find any help for.
Every once in a while, my webserver doesn't respond to requests
anymore, i.e. the browser simply keeps on loading but doesn't get any
data.
Using the status mod I found that in such a situation every possible
slot is being used by