[Date Prev][Date Next] [Thread Prev][Thread Next] [Date Index] [Thread Index]

[OT] Practical consequence of http://www.php-security.org/MOPB/MOPB-02-2007.html on Sarge

Hi folks,

I've looked at
and reproduced it on sarge/etch and apache2.
I saw childs dieing and respawning, increasing the load on my system, but 
DoS'ing this way seems to be way ineffictive to me (compared to the usual: 
Let's create a bunch of tcp-sockets 'till a ressources are exhausted thing).
This might be an issue on FreeBSD, if protective http rules are set, but is it 
an issue on debian, too?


Reply to: