Back to list
*Note: Email address will appear as "user domain ext" to prevent harvesting.
Re: a cheesy Apache / IIS DoS vuln (+a question)
Jan 09 2007 06:15AM
William A. Rowe, Jr. (wrowe rowe-clan net)
> a quick fix for this can be available at least on bsd, there is accf_http
> that can be modified not to pass the connection to apache until a full request
> is read (either get or post, full, not just the first get request header,
> of course this can be even worst for a lot of...
[ more ]
Copyright 2010, SecurityFocus