Hacker Newsnew | past | comments | ask | show | jobs | submitlogin

I remember years ago there was a way to DDoS a server by opening the connection and sending data REALLY slow, like 1 byte a second. I wonder if there is a way to do the opposite of that, where ever request is handed off to a worker which slow enough to keep the connection alive. I doubt this can scale well, but just a thought.


Slow loris attack https://en.wikipedia.org/wiki/Slowloris_(computer_security)


The “opposite” thing you’re describing sounds like a tarpit: https://en.m.wikipedia.org/wiki/Tarpit_(networking)


you can have some fun with nginx if you can identify on your backend whether the request is coming from a malicious source, e.g. with X-Accel-Limit-Rate




Guidelines | FAQ | Lists | API | Security | Legal | Apply to YC | Contact

Search: