Apache directives to avoid DDOS

From: Nouha Terzi <nounowa_at_gmail.com>
Date: Mon, 30 Jan 2012 15:56:52 +0100

Hi,

As suggested here:
https://community.qualys.com/blogs/securitylabs/2011/11/02/how-to-protect-against-slow-http-attacks
Modifying those directives can protect against slow HTTP attacks and make
the attacks more difficult to execute:

- LimitRequestFields
- LimitRequestFieldSize
- LimitRequestBody
- LimitRequestLine
- LimitXMLRequestBody
- TimeOut
- KeepAliveTimeOut
- ListenBackLog’s
- MaxRequestWorkers
- AcceptFilter

Does someone already configured a svn apache server to handle slow http
attacks?
Is there any known impact of theses apache directives?

Thank you in advance.

-- 
Nouha

Received on 2012-01-30 15:57:26 CET

This message: [ Message body ]
Next message: Alexander Shenkin: "What happens when revision numbers are not chronological?"
Previous message: Daniel Shahaf: "Re: Can't check out http://svn.freebsd.org/base/stable/9/sys/dev/usb/controller with serf"
Next in thread: Alexander Shenkin: "What happens when revision numbers are not chronological?"
Reply: Alexander Shenkin: "What happens when revision numbers are not chronological?"

Contemporary messages sorted: [ by date ] [ by thread ] [ by subject ] [ by author ] [ by messages with attachments ]