Catch up on stories from the past week (and beyond) at the Slashdot story archive

 



Forgot your password?
typodupeerror

Slashdot videos: Now with more Slashdot!

  • View

  • Discuss

  • Share

We've improved Slashdot's video section; now you can view our video interviews, product close-ups and site visits with all the usual Slashdot options to comment, share, etc. No more walled garden! It's a work in progress -- we hope you'll check it out (Learn more about the recent updates).

×

+ - (SL)Hacker finds HTTP protocol flaw everyone knew!->

Submitted by
DGtlRift
DGtlRift writes "Wong Onn Chee "discovered" a flaw with the HTTP protocol involving the POST method and slowly trickling data to server as a DDoS via Agentless BotNet attack that effects every HTTP server in the world. The problem with this "discovery" is that any embedded engineer that has implemented HTTP services on memory and realtime constrained systems (should already) know of this issue (since at least 1994), and send a 504 for poorly performing clients even if a proxy wasn't involved — a slight adulteration of the protocol, but protects the service..."
Link to Original Source

"Pascal is Pascal is Pascal is dog meat." -- M. Devine and P. Larson, Computer Science 340

Working...