cancel
Showing results for 
Search instead for 
Did you mean: 
cancel
Showing results for 
Search instead for 
Did you mean: 

Community Tip - You can Bookmark boards, posts or articles that you'd like to access again easily! X

slow HTTP POST" Denial of Service (DoS) attack

TanmeyTWX
17-Peridot

slow HTTP POST" Denial of Service (DoS) attack

Threat description:-

This is an application-level DoS that consumes server resources by maintaining open connections for an extended period of time by slowly sending traffic to the server. If the server maintains too many connections open at once, then it may not be able to respond to new, legitimate connections.

The attack holds serverconnections open by sending properly crafted HTTP POST headers that contain a Content-Length header with a large value to inform the web server how much of data to expect. After the HTTP POST headers are fully sent, the HTTP POST message body is sent at slow speeds to prolong the completion of the

connection and lock up server resources.

Impact:-

All other services remain intact but the web server itself becomes inaccessible.

Solution???

1 REPLY 1

Tarun, there is an active open support case regarding this issue. I'll update this thread once we have more information.

Top Tags