Re: Apache DoS Attack

From: Dag-Erling Coidan Smørgrav (dag-erliat_private)
Date: Wed Aug 12 1998 - 05:08:07 PDT

Next message: Michael S Kluskens: "Re: irix-6.2 "at -f" vulnerability"

Previous message: Theodore D Hickman Jr: "Re: sytraced (stolen)"
Maybe in reply to: Jamie Orzechowski: "Apache DoS Attack"
Next in thread: Paul Leach: "Re: Apache DoS Attack"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

Jonathan Freeman <freemanat_private> writes:
>     <>    IIS 3.0  (Service Pack 3)
>
>                causes immediate jump to 100% CPU for approx. 5 seconds
>                multiple attacks can keep the CPU in the 90% range
>
>     <>    IIS 4.0  (Service Pack 3)
>
>                causes immediate jump to 80% CPU for approx. a half second
>                multiple attacks DO NOT cause more thank 40% sustained CPU

In other words, they're immune. 80% CPU load for half a second simply
means the server is working hard to quaff the request (or drink from a
firehose, depending on the value passed to sioux with the -n switch ),
but it's not leaking. IIS 3.0 is apparently a bad performer (well, a
worse performer than IIS 4.0, anyway) and takes more time to recover.
Did you run these tests on the same computer (or at least on ident-
ically configured computers)? If not, there is no basis for
comparison.

DES
--
Dag-Erling Smørgrav - dag-erliat_private

Next message: Michael S Kluskens: "Re: irix-6.2 "at -f" vulnerability"
Previous message: Theodore D Hickman Jr: "Re: sytraced (stolen)"
Maybe in reply to: Jamie Orzechowski: "Apache DoS Attack"
Next in thread: Paul Leach: "Re: Apache DoS Attack"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:12:23 PDT