New Apache vuln / Slowloris

Unanswered Question
Jun 25th, 2009

Hi,

Is there a signature release planned for the Apache vulnerability

disclosed recently? Links with further information is provided below:

http://www.pcsympathy.com/2009/06/18/apache-http-dos-tool-released/

http://ha.ckers.org/slowloris/slowloris.pl

Basically a regexp match for the bogus headers would probably detect

this specific tool, but is there a more advanced siganture planned?

Would appreciate any feedback you have on this issue.

I have this problem too.
0 votes
  • 1
  • 2
  • 3
  • 4
  • 5
Overall Rating: 0 (0 ratings)
Loading.

Actions

This Discussion