DoS attack in the wild

luben karavelov luben at
Sat Jun 20 16:33:40 MSD 2009

Jérôme Loyet wrote:
> this attack works great on apache but I was unable, yet, to make it
> works on nginx (0.8.3).

On nginx it exhuases the available sockets. My setup is nginx-0.7.58 
with cofig: :

worker_processes  4;
worker_rlimit_nofile 5000;
events {
     worker_connections  2048;
     use epoll;

and without the fixes I could DoS the server with:
./ -dns -timeout 30 -num 10000 -tcpto 5

exhausts available sockets and the server stops replying to new requests.

Sorry for the late reply.


More information about the nginx mailing list