It's believed that SPDY is a huge DDoS vector by itself

Piotr Sikora piotr at cloudflare.com
Wed Jan 29 00:46:42 UTC 2014


Hey,

> Some other projects drafted towards HTTP/2.0 are made with efficiency in
> mind.
> One of them is called HTTPbis and has been first drated mid-2012 by 4
> interesting guys: Willy Tarreau (HAProxy), Poul‐Henning Kamp (Varnish),
> Adrien de Croy (WinGate) and Amos Jeffries (Squid).
> Look at that: 1 load-balancing guy, 1 cache one and 2 proxy ones... Those
> guys definitely want to avoid leveraging (D)Dos attacks!

HTTPbis isn't a protocol, it's the name of an IETF working group
responsible developing and maintaining HTTP.

What you're referring to is called "Network-Friendly HTTP Upgrade":
http://tools.ietf.org/html/draft-tarreau-httpbis-network-friendly-00

But HTTPbis chose SPDY as a base for HTTP/2.0, so there is no point in
adding support for all the proposed alternatives (even if they are
indeed better).

Best regards,
Piotr Sikora



More information about the nginx mailing list