Making sure your application is available

RATE LIMITING

Article from Issue 110/2010
Author(s):

Maybe we should listen to those network guys.

A few months ago I wrote about the Slowloris attack on web servers, the short version of which is: Attackers connect and hold connections open, using very few resources on their end, but soaking up all your available sockets and preventing any legitimate users from connecting. Since then, a number of other denial-of-service types of attack have been announced against web servers, web applications, and other services. This got me thinking: How can programmers deal with these issues in a generic way to reduce their impact?

Buy this article as PDF

Express-Checkout as PDF
Price $2.95
(incl. VAT)

Buy Linux Magazine

SINGLE ISSUES
 
SUBSCRIPTIONS
 
TABLET & SMARTPHONE APPS
Get it on Google Play

US / Canada

Get it on Google Play

UK / Australia

Related content

  • Scalp: Log Analyzer Finds Web Attacks

    Romain Gaucher, a specialist in web security, offers his Scalp tool in version 0.4. The log analyzer searches for attacks on Apache web applications.

  • Perl – USB Sticks

    USB sticks and SD cards quickly lose their value, but if a script distributes the data across several such devices, flash memory is still useful as a fast and shockproof backup medium despite limited capacity.

  • Security Lessons

    A slow death for the default configuration.

  • Command Line: Vim Search Commands

    We show you how to build on the basic functionality of Vim by introducing some useful search commands.

  • Honeynet

    Security-conscious admins can use a honeynet to monitor, log, and analyze intrusion techniques.

comments powered by Disqus

Direct Download

Read full article as PDF:

058-059_kurt.pdf (893.86 kB)

News