[OT] Practical consequence of http://www.php-security.org/MOPB/MOPB-02-2007.html on Sarge
Hi folks,
I've looked at
http://www.php-security.org/MOPB/MOPB-02-2007.html.
and reproduced it on sarge/etch and apache2.
I saw childs dieing and respawning, increasing the load on my system, but
DoS'ing this way seems to be way ineffictive to me (compared to the usual:
Let's create a bunch of tcp-sockets 'till a ressources are exhausted thing).
This might be an issue on FreeBSD, if protective http rules are set, but is it
an issue on debian, too?
Greets
Thorsten
Reply to: