Slow Loris Attack – Computerphile

20 thoughts on “Slow Loris Attack – Computerphile”

• I love Mike Pound's videos, especially this one. Cheers. 🙂

• a simple defense analyze the timing of the data.

  if it is too slow for the capabilities of even the slowest connection say a 56k line then it comes back with "either upgrade to a faster connection or we will kick your connection and ban you for 10 minutes" or something like that or put a limit to the number of connections say 6

• To come up to date a bit, this is one of the reasons why you find nginx on pretty much every front end of a load balancer these days 😆

• Can we get the python script😢

• Randomly ended up here and really enjoyed the demo.

• It's funny how simple this is and how it still works lol

• Is this Apache vulnerability still valid today? It is far more dangerous than normal DDoS.

• can slowloris work on a public ip address?

• does it still working in apache nowadays?

• Really interesting

• I love how excited he is about this DoS and explaining it. The explanation really helped with my studies for CEH! THanks!

• I wonder… how many russian propganda media outlets are vulnerable to this attack?
  Asking out of pure curiosity, of course… Timing of the question is purely coincidental…

• So how would I know if my website is being slowloris-ed?

• Dear subtitler: He's saying "Carriage," not "Caret"

• ppl still use thread per client in 2022?

• This reminds me of endleSSH, which is used to do prevent SSH cracking and wasting hacker’s time

• I don't know how oversimplified is this video, but if someone is actually trying to be secure Idk how he could not think about this possibility

• you wont let me live , you wont let me die

• I thought this video was about Solaris and that the title and thumbnail were just a pun.

• incredible lol

Comments are closed.