Webmaster rambling and mental notes
Home | Profile | Archives | Friends
Attack On a Significant Flaw In Apache Released
6/19/2009

Zerimar points out that a meaning flaw in Apache that can lead to a fairly trivial DoS attack is in the wild. Apache 1.x, 2.x, dhttpd, GoAhead WebServer, and Squid are deep-seated vulnerable, while IIS6.0, IIS7.0, and lighttpd are entrenched not vulnerable. As of this writing, Apache footing does not have a patch available. From Rsnake's introduction to the attack tool: "In because the ramifications of a slow denial of service attack against one and only




roget's ii: the new thesaurusmain entry:nice
part of speech:adjective
definition:very tough to please.
choosy services, rather than flooding networks, a concept emerged that would allow a single machine to take down another machine's web server with minimal bandwidth and side effects on unrelated support free school lunch and ports. The ideal supervision for many denial of service attacks is where all other welfare work remain intact but the webserver itself is undoubtedly




if (lexico_globals.googleafc.ads.content.length)
{
if (lexico_globals.googleafc.ads.content.length >= 4) {
document.write(lexico_globals.googleafc.ads.contenttop);
document.write(lexico_globals.googleafc.ads.sponsoredlinks);
document.write inaccessible. Slowloris was born from this concept, and is therefore comparatively very stealthy compared to most flooding tools."

Read more of this story at Slashdot.




More: - Brought to my attention by

Mark

Share |
(Posted in Nerd)
Share and enjoy
  • Digg
  • del.icio.us
  • blinkbits
  • BlinkList
  • BlogMemes
  • blogmarks
  • DZone
  • Fark
  • Furl
  • Netvouz
  • NewsVine
  • Reddit
  • Slashdot
  • Smarking
  • Spurl
  • StumbleUpon
  • Taggly
  • Technorati
  • YahooMyWeb
Post Comment

Notify me of followup comments via e-mail.

Entry 1 of 6209
Last Page | Next Page