On Sunday 28 May 2006 21:23, Sergey Tsalkov wrote: > I'm using Apache 1.3.36. *sigh*. Of course a server that's been obnsolete for more than four years isn't up to date. Any 1.x server leaves you with every connection tying up an entire process. > mod_choke Never heard of it. > Nick, you mentioned that Apache 2.2 has built-in countermeasures to > stop this sort of attack.. Compared to what you're using, any 2.x with the worker MPM is going to be a huge improvement. 2.2's event MPM may improve on that. See also http://httpd.apache.org/docs/2.2/mod/core.html#acceptfilter for specific defence that works with any MPM on some operating systems. -- Nick Kew --------------------------------------------------------------------- The official User-To-User support forum of the Apache HTTP Server Project. See <URL:http://httpd.apache.org/userslist.html> for more info. To unsubscribe, e-mail: users-unsubscribe@xxxxxxxxxxxxxxxx " from the digest: users-digest-unsubscribe@xxxxxxxxxxxxxxxx For additional commands, e-mail: users-help@xxxxxxxxxxxxxxxx
|