Re: counter apache DoS attacks?

From: Brett Glass (brett@lariat.org)
Date: 07/29/02

• Next message: Matthew Grooms: "Re: vpn1/fw1 NG to ipsec/racoon troubles, help please ..."
• Previous message: Colin Faber: "Re: counter apache DoS attacks?"
• In reply to: Cyrus: "counter apache DoS attacks?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Date: Mon, 29 Jul 2002 12:29:52 -0600
To: Cyrus <cyrus@odsource.com>, security@FreeBSD.ORG
From: Brett Glass <brett@lariat.org>

See my presentation from OSCon:

http://www.brettglass.com/apacheabuse/

--Brett

P.S. -- The material overlaps somewhat with my recent BSDCon
presentation, but this talk specifically focused on Apache and
how to avoid abuses ranging from address harvesting to worms.

At 03:04 AM 7/29/2002, Cyrus wrote:
  
>Several people get their jollies off by having differnet servers
>infinitely request my main page thousands of times each therefore shooting
>my memory to poo and a lot of bandwidth. But my problem is the memory, not
>the bandwidth. I've looked through mod_throttle and such, not for me. Is
>there anything out there that can automatically detect and take an action
>for this type of attack? I dunno...like use route on the offenders IP and
>such. But for it to do this automatically. Anyone have any suggestions?
>Thanks in advance.
>
>-Cyrus
>
>
>
>To Unsubscribe: send mail to majordomo@FreeBSD.org
>with "unsubscribe freebsd-security" in the body of the message

To Unsubscribe: send mail to majordomo@FreeBSD.org
with "unsubscribe freebsd-security" in the body of the message

• Next message: Matthew Grooms: "Re: vpn1/fw1 NG to ipsec/racoon troubles, help please ..."
• Previous message: Colin Faber: "Re: counter apache DoS attacks?"
• In reply to: Cyrus: "counter apache DoS attacks?"
• Messages sorted by: [ date ] [ thread ] [ subject ] [ author ] [ attachment ]

Relevant Pages Re: Macs vs Dell, again from the AP. ... bothering to supply enough memory or memory bandwidth. ... GB/sec. ... PCI Express graphics slot, ... (comp.sys.mac.advocacy) Re: Macs vs Dell, again from the AP. ... memory and 16 TB of virtual memory." ... bothering to supply enough memory or memory bandwidth. ... GB/sec. ... That 16% faster is based on 533 MHz memory in the Dell. ... (comp.sys.mac.advocacy) Re: GeForce 6800 Go bus bandwith problem? ... I also thought about the memory bandwidth (though admittedly only after ... but AFAICS it uploads the same texture in every pass so various caches ... For a long time, and in many cases even now, the limit is the driver ... (comp.graphics.api.opengl) Re: GeForce 6800 Go bus bandwith problem? ... Our code does not use PBOs, but if time permits we'll change that. ... I also thought about the memory bandwidth (though admittedly only after ... but AFAICS it uploads the same texture in every pass so various caches ... (comp.graphics.api.opengl) [UNIX] Denial of Service in Apache HTTP Server 2.x ... The following security advisory is sent to the securiteam mailing list, and can be found at the SecuriTeam web site: http://www.securiteam.com ... The Apache Software Foundation's HTTP Server Project is an effort to ... A memory leak in Apache server, allows a remote user to exhaust system ... Remote exploitation of a memory leak in the Apache HTTP Server causes the ... (Securiteam)

• Security
• UNIX
• Linux
• Coding
• Usenet

• News
• Mailing-Lists
• Newsgroups
• Service
• About
• Privacy
• Search
• Imprint