On Tue, Jan 5, 2016 at 10:02 AM, Paul Rubin <no.email@nospam.invalid> wrote: > Steven D'Aprano <st...@pearwood.info> writes: >> Maybe they're stress-testing a web server, or they just want to download >> things in a rush. > > They're stress-testing a web server through a tor proxy? This sounds > abusive to me. > > I also wonder whether 400 referred to the HTTP 400 error code rather > than the number of requests to be sent. As in: > > - Layer 7 (“400 bad request”) attacks toward our web and application > servers, causing Linode Manager outages > > from http://status.linode.com/incidents/mmdbljlglnfd > regarding a big DDOS attack that's been running against Linode.com > (a VPS host) over the past couple weeks.
I had the same initial thought about the status code but dismissed it, since why would somebody intentionally send a request that will return a 400 status? I was not thinking about abuse though, so the DDoS scenario did not occur to me. -- https://mail.python.org/mailman/listinfo/python-list
