cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Showing results for 
Search instead for 
Did you mean: 

Community Tip - Did you get an answer that solved your problem? Please mark it as an Accepted Solution so others with the same problem can find the answer easily. X

slow HTTP POST" Denial of Service (DoS) attack

TanmeyTWX
17-Peridot

slow HTTP POST" Denial of Service (DoS) attack

Threat description:-

This is an application-level DoS that consumes server resources by maintaining open connections for an extended period of time by slowly sending traffic to the server. If the server maintains too many connections open at once, then it may not be able to respond to new, legitimate connections.

The attack holds serverconnections open by sending properly crafted HTTP POST headers that contain a Content-Length header with a large value to inform the web server how much of data to expect. After the HTTP POST headers are fully sent, the HTTP POST message body is sent at slow speeds to prolong the completion of the

connection and lock up server resources.

Impact:-

All other services remain intact but the web server itself becomes inaccessible.

Solution???

1 REPLY 1
Aanjan
12-Amethyst
(To:TanmeyTWX)

Tarun, there is an active open support case regarding this issue. I'll update this thread once we have more information.

Announcements


Top Tags