On Tue, 17 Dec 2002, Eric Rescorla wrote:
> Joe Rhett <[EMAIL PROTECTED]> writes:
> > Both. Only on SSL-enabled servers. Rephrase, only on OpenSSL servers.
> > And yes I'm hella confused myself.
> So, say you have a server which listens on both port 443 for SSL
> and 80 for HTTP, does access on port 80 get blocked at the same
> time as access on port 443 gets blocked.
I'm getting in on this thread kinda late, but I'm also in the same boat as
Joe.
Apache running a good deal of modules, all up to date, getting 'locked up'
by Slapper.
We have 512 ip addresses on our system as well, so the same Slapper system
hits us over and over... but our server is actually pretty robust. I have
raised the maximum children beyond the 256 hardcoded in httpd.h and seen
the system run nearly 500 or so without problems.
When Slapper hits, I get a few hundred warnings in the logs, and the
system becomes unresponsive to both port 80 and 443. SSHing into the
system and restarting Apache fixes the problem normally.
I've seen quite a few reports of this problem in different forums, but
they keep getting dismissed as crackpots that didn't upgrade the system
right.
I was going to try to mock up a system and have Slapper attack it, but I
simply haven't had the time... and I'm not sure I'd know where to start.
----Steve
Stephen Amadei
Dandy.NET! CTO
Atlantic City, NJ
______________________________________________________________________
OpenSSL Project http://www.openssl.org
User Support Mailing List [EMAIL PROTECTED]
Automated List Manager [EMAIL PROTECTED]
