Slow HTTP Denial of Service Attack

Description
  • Your web server is vulnerable to Slow HTTP DoS (Denial of Service) attacks. <br/><br/> Slowloris and Slow HTTP POST DoS attacks rely on the fact that the HTTP protocol, by design, requires requests to be completely received by the server before they are processed. If an HTTP request is not complete, or if the transfer rate is very low, the server keeps its resources busy waiting for the rest of the data. If the server keeps too many resources busy, this creates a denial of service.
Remediation
  • Consult Web references for information about protecting your web server against this type of attack.
References