On Jun 24, 2009, at 5:18 AM, Joe Orton wrote:

Regardless, the only thing I've ever wanted to see changed in the server
which would somewhat mitigate this type of attack is to have coarser
granularity on timeouts, e.g. per-request-read, rather than simply

++1. Timeout would set universal defaults and we could then
have something like Timeout ReqRead 2 to provide further refinement.

Reply via email to