New DOS HTTP tool

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

To: users@xxxxxxxxxxxxxxxx
Subject: New DOS HTTP tool
From: Julien Pauli <doctorrock83@xxxxxxxxx>
Date: Wed, 17 Jun 2009 22:59:51 +0200
Reply-to: users@xxxxxxxxxxxxxxxx

Hi community.
Just for information :

"In considering the ramifcations of a slow denial of service attack against particular services, rather than flooding networks, a concept emerged that would allow a single machine to take down another machine's web server with minimal bandwidth and side effects on unrelated services and ports. The ideal situation for many denial of service attacks is where all other services remain intact but the webserver itself is completely inaccessible. Slowloris was born from this concept, and is therefore relatively very stealthy compared to most flooding tools."

You can find all (including Perl source code) here : http://ha.ckers.org/slowloris/ - http://ha.ckers.org/blog/20090617/slowloris-http-dos/

That seems interesting. I've been told about mods, such as mod_security or mod_evasive that could take care of that (no tested, on my way)

Any suggestions, ideas ? ;)

Julien.P

Follow-Ups:
- Re: New DOS HTTP tool
  - From: Nick Kew

Prev by Date: Re: Backend host/port in the log
Next by Date: Configure Server To Run In Windows Vista
Previous by thread: how to do http PUT inside the output filter
Next by thread: Re: New DOS HTTP tool
Index(es):
- Date
- Thread

[Index of Archives] [Open SSH Users] [Linux ACPI] [Linux Kernel] [Linux Laptop] [Kernel Newbies] [Security] [Netfilter] [Bugtraq] [Squid] [Yosemite News] [MIPS Linux] [ARM Linux] [Linux Security] [Linux RAID] [Samba] [Video 4 Linux] [Device Mapper]