Re: [Sks-devel] simple DoS against SKS's HKP interface :/

sks-devel

[Date Prev][Date Next][Thread Prev][Thread Next][Date Index][Thread Index]

Re: [Sks-devel] simple DoS against SKS's HKP interface :/

From:	MailFighter.net Admin
Subject:	Re: [Sks-devel] simple DoS against SKS's HKP interface :/
Date:	Sun, 18 Mar 2012 11:36:34 -0300
User-agent:	Mozilla/5.0 (X11; Linux x86_64; rv:10.0.2) Gecko/20120216 Thunderbird/10.0.2

-----BEGIN PGP SIGNED MESSAGE-----
Hash: SHA512

On 03/13/2012 06:08 PM, Daniel Kahn Gillmor wrote:
> It appears that SKS 1.1.1's hkp interface is vulnerable to an ugly DoS attack 
> by a client
> holding open a network connection without completing an HTTP request.

Sounds just like the kind of vulnerability that was present in most http 
services during the
slowloris era. I'm pretty sure the same tools can be used to attack sks's hkp 
interface.

If you could share your nginx configuration, others will probably adapt it to 
lighttpd, apache...

I know, it's not big science, but to get the ball rolling :)

Buanzo.

-----BEGIN PGP SIGNATURE-----
Version: GnuPG v1.4.11 (GNU/Linux)
Comment: Using GnuPG with Mozilla - http://enigmail.mozdev.org/

iEYEAREKAAYFAk9l8u4ACgkQAlpOsGhXcE1Q7QCfZwzyx2iaQRV6BfAlZ+/bqrvC
bZYAn2ts+FpnwkPC0l8/t7J4asMNVbYF
=r67R
-----END PGP SIGNATURE-----

[Prev in Thread]

Current Thread

[Next in Thread]

[Sks-devel] simple DoS against SKS's HKP interface :/, Daniel Kahn Gillmor, 2012/03/13
- Re: [Sks-devel] simple DoS against SKS's HKP interface :/, MailFighter.net Admin <=
  - Re: [Sks-devel] simple DoS against SKS's HKP interface :/, Daniel Kahn Gillmor, 2012/03/18
    - Re: [Sks-devel] simple DoS against SKS's HKP interface :/, Kristian Fiskerstrand, 2012/03/19
    - Re: [Sks-devel] simple DoS against SKS's HKP interface :/, Daniel Kahn Gillmor, 2012/03/19
    - Re: [Sks-devel] simple DoS against SKS's HKP interface :/, Kristian Fiskerstrand, 2012/03/19
    - Re: [Sks-devel] simple DoS against SKS's HKP interface :/, Daniel Kahn Gillmor, 2012/03/19
    - Re: [Sks-devel] simple DoS against SKS's HKP interface :/, Phil Pennock, 2012/03/21
    - Re: [Sks-devel] simple DoS against SKS's HKP interface :/, Kristian Fiskerstrand, 2012/03/25
    - Re: [Sks-devel] simple DoS against SKS's HKP interface :/, Daniel Kahn Gillmor, 2012/03/25
    - Re: [Sks-devel] simple DoS against SKS's HKP interface :/, Kristian Fiskerstrand, 2012/03/25
    - Re: [Sks-devel] simple DoS against SKS's HKP interface :/, Peter Kornherr, 2012/03/20

Prev by Date: Re: [Sks-devel] keyserver.nausch.org died once again :( - PTree may be corrupted
Next by Date: Re: [Sks-devel] keyserver.nausch.org died once again :( - PTree may be corrupted
Previous by thread: [Sks-devel] simple DoS against SKS's HKP interface :/
Next by thread: Re: [Sks-devel] simple DoS against SKS's HKP interface :/
Index(es):
- Date
- Thread