Re: Web servers / possible DOS Attack / mime header flooding

From: Vanja Hrustic (vanjaat_private)
Date: Thu Sep 03 1998 - 12:58:55 PDT

Next message: bugtraq: "wwwboard.pl vulnerability"

Previous message: The Late Ian Angles: "Back Orifice detection and removal"
Maybe in reply to: Laurent FACQ: "Web servers / possible DOS Attack / mime header flooding"
Next in thread: Rich Wood: "Re: Web servers / possible DOS Attack / mime header flooding"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

At 12:34 03/09/98 +0200, Laurent FACQ wrote:
>#       => by sending a crazy amount of 8000 bytes headers, it's possible
>#       to consume a lot of memory (and of course CPU). The point
>#       is that httpd daemons grow and STAY at this big size (or die
>#       if you send too much)

After 2000 headers, 1.3.1 was consuming 93% and stayed there (other
processes were consuming 7%). Script dies after 2800 and Apache goes back
to 0.05%. Couldn't crash it.

Tested on HP-UX 10.20 / Apache 1.3.1.

Vanja Hrustic
Information Systems Manager
Siam Relay Ltd.
http://www.siamrelay.com
vanjaat_private
Phone: +662-616-8628
Fax  : +662-272-6516

Next message: bugtraq: "wwwboard.pl vulnerability"
Previous message: The Late Ian Angles: "Back Orifice detection and removal"
Maybe in reply to: Laurent FACQ: "Web servers / possible DOS Attack / mime header flooding"
Next in thread: Rich Wood: "Re: Web servers / possible DOS Attack / mime header flooding"
Messages sorted by: [ date ] [ thread ] [ subject ] [ author ]

This archive was generated by hypermail 2b30 : Fri Apr 13 2001 - 14:14:53 PDT