DoS attack in the wild
cliff at develix.com
Fri Jun 19 23:39:46 MSD 2009
On Fri, 2009-06-19 at 21:45 +0300, luben karavelov wrote:
> A DoS attack against number of http servers is available and has hit
> slashdot today:
> Out of the box nginx is also vulnerable (I have tested it on latest 0.7
> installation). A quick fix for the vulnerability follows:
I notice that one of the prerequisites is:
"2) Negotiate a high TCP window size for each of the connections (1 GB
should be doable)"
This seems to point to TCP stack tuning to prevent this.
More information about the nginx