I would guess that Varnish isn't affected by this, but does anyone know
for sure? Does Varnish protect against this attack in all cases if you
have Apache as your backend?
http://isc.sans.org/diary.html?storyid=6601
Many thanks,
Nick.
___
In message 4a3ba393.3010...@loman.net, Nick Loman writes:
I would guess that Varnish isn't affected by this, but does anyone know
for sure? Does Varnish protect against this attack in all cases if you
have Apache as your backend?
http://isc.sans.org/diary.html?storyid=6601
Varnish will abandon
-BEGIN PGP SIGNED MESSAGE-
Hash: SHA1
Poul-Henning Kamp wrote:
Systems using http accept filters (FreeBSD possibly others) the Varnish
(or apache) will never even see these connections in the first place.
Does this basically mean that in these uncertain times where kiddiots
DoS