On Tue, Oct 10, 2023 at 10:03:32PM +, Lukas Tribus wrote:
> On Tue, 10 Oct 2023 at 20:22, Willy Tarreau wrote:
> >
> > So at this point I'm still failing to find any case where this attack
> > hurts haproxy more than any of the benchmarks we're routinely inflicting
> > it, given that it acts e
On Tue, 10 Oct 2023 at 20:22, Willy Tarreau wrote:
>
> So at this point I'm still failing to find any case where this attack
> hurts haproxy more than any of the benchmarks we're routinely inflicting
> it, given that it acts exactly like a client configured with a short
> timeout (e.g. if you conf
Hi
I just wanted to know if you're interested in acquiring the email-list of
Pollutec 2023
Please let me know your thoughts on this so that I can share you the number of
attendees and the cost.
Awaiting your reply!
Regards,
Kennedy Webb - Demand Generation
On Tue, Oct 10, 2023 at 07:23:25PM +, Tristan wrote:
> Thanks for looking into it, Willy :-)
You're welcome. Actually last week I ran some tests *exactly* on this,
thinking that it was the same principle as leaving orphaned sockets
when you're limited on FDs. That's how I discovered the pool b
Thanks for looking into it, Willy :-)
> On 10 Oct 2023, at 19:24, Willy Tarreau wrote:
> […]
> But for now if you site requires any of this, I can't see how it has not
> experienced weekly outages from standard attacks.
Funny that you mention this; bit out of topic but we had enjoyed a relativ
On Tue, Oct 10, 2023 at 03:57:09PM +0200, Willy Tarreau wrote:
> On Tue, Oct 10, 2023 at 03:49:21PM +0200, Willy Tarreau wrote:
> > > Seems like a clever update to the "good old" h2 multiplexing abuse
> > > vectors:
> > > 1. client opens a lot of H2 streams on a connection
> > > 2. Spams some requ
Hey,
Ever been introduced to a service that offers off-site answering for your
company for significantly less than hiring in-house?
That’s where Gummodo comes in: Our company is here in the US and offers
remote live answering for almost anything imaginable. We handle calls
within work hours, afte
On Tue, Oct 10, 2023 at 03:49:21PM +0200, Willy Tarreau wrote:
> > Seems like a clever update to the "good old" h2 multiplexing abuse vectors:
> > 1. client opens a lot of H2 streams on a connection
> > 2. Spams some requests
> > 3. immediately sends h2 RST frames for all of them
> > 4. Go back to
Hi Tristan,
On Tue, Oct 10, 2023 at 12:56:12PM +, Tristan wrote:
> Hi all,
>
> This just got disclosed:
> -
> https://cloud.google.com/blog/products/identity-security/google-cloud-mitigated-largest-ddos-attack-peaking-above-398-million-rps/
> -
> https://cloud.google.com/blog/products/ident
On 10/10/2023 14:04, Aleksandar Lazic wrote:
...
Well this implies that always a dpapi should run together with HAProxy
if you want something like DNS resolving for server or anything else?
I don't think Willy meant removing this much; from a previous discussion
with him on the topic, it s
FYI
https://cloud.google.com/blog/products/identity-security/how-it-works-the-novel-http2-rapid-reset-ddos-attack
Hi.
On 2023-10-10 (Di.) 09:08, Willy Tarreau wrote:
Hi Tristan,
On Sun, Oct 08, 2023 at 12:15:00PM +, Tristan wrote:
Since this was brought up,
On 7 Oct 2023, at 14:34, Willy Tarreau wrote:
[...]
Maybe this will then bring up SPOE to a level where the body of a request
can be scanned
Hi all,
This just got disclosed:
-
https://cloud.google.com/blog/products/identity-security/google-cloud-mitigated-largest-ddos-attack-peaking-above-398-million-rps/
-
https://cloud.google.com/blog/products/identity-security/how-it-works-the-novel-http2-rapid-reset-ddos-attack
Seems like a cl
Hi
I just wanted to know if you're interested in acquiring the email-list of
Global Sources Consumer Electronis Show 2023
Please let me know your thoughts on this so that I can share you the number of
attendees and the cost.
Awaiting your reply!
Regards,
Persephone Foster - Demand Generation
I use the SPOE for SAML authentication with Okta and Azure AD. I'm still
waiting for shared variables so I can restore my active-active configuration
with 2 HAPEE servers.
Content by Norman. Spelling by iPhone.
On Oct 10, 2023, at 03:12, Willy Tarreau wrote:
On Sun, Oct 08, 2023 at 02:43:57P
On Sun, Oct 08, 2023 at 02:43:57PM +0200, Aleksandar Lazic wrote:
>
> On 2023-10-08 (So.) 14:15, Tristan wrote:
> > Since this was brought up,
> >
> > > On 7 Oct 2023, at 14:34, Willy Tarreau wrote:
> > >
> > > [...]
> > >
> > > > Maybe this will then bring up SPOE to a level where the body of
Hi Tristan,
On Sun, Oct 08, 2023 at 12:15:00PM +, Tristan wrote:
> Since this was brought up,
>
> > On 7 Oct 2023, at 14:34, Willy Tarreau wrote:
> >
> > [...]
> >
> >> Maybe this will then bring up SPOE to a level where the body of a request
> >> can be scanned and bring it to a full WAF
17 matches
Mail list logo
