Bug 136281 - New port: benchmarks/slowloris - HTTP client to test webservers over denial-of-service attacks
Summary: New port: benchmarks/slowloris - HTTP client to test webservers over denial-o...
Status: Closed FIXED
Alias: None
Product: Ports & Packages
Classification: Unclassified
Component: Individual Port(s) (show other bugs)
Version: Latest
Hardware: Any Any
: Normal Affects Only Me
Assignee: Philip M. Gollucci
URL:
Keywords:
Depends on:
Blocks:
 
Reported: 2009-07-03 13:20 UTC by Alexey Degtyarev
Modified: 2009-07-13 23:50 UTC (History)
0 users

See Also:

Attachments
slowloris.shar (3.15 KB, text/plain)
2009-07-03 13:20 UTC, Alexey Degtyarev 		no flags Details
View All Add an attachment (proposed patch, testcase, etc.)

Note You need to log in before you can comment on or make changes to this bug.
Description Alexey Degtyarev 2009-07-03 13:20:05 UTC 
Slowloris both helps identify the timeout windows of a HTTP server or Proxy
server, can bypass httpready protection and ultimately performs a fairly low
bandwidth denial of service.  It has the added benefit of allowing the server
to come back at any time (once the program is killed), and not spamming the
logs excessively.  It also keeps the load nice and low on the target server, so
other vital processes don't die unexpectedly, or cause alarm to anyone who is
logged into the server for other reasons.

The main audience using slowloris is of course a system administrators wanting
to measure their webserver's performance and vulnerability.

WWW: http://ha.ckers.org/slowloris/
Comment 1 Philip M. Gollucci freebsd_committer freebsd_triage 2009-07-08 04:21:59 UTC 
Responsible Changed
From-To: freebsd-ports-bugs->pgollucci

I'll take it.
Comment 2 dfilter service freebsd_committer freebsd_triage 2009-07-13 23:40:30 UTC 
pgollucci    2009-07-13 22:40:20 UTC

  FreeBSD ports repository

  Modified files:
    benchmarks           Makefile 
  Added files:
    benchmarks/slowloris Makefile distinfo pkg-descr 
    benchmarks/slowloris/files extra-nothreads 
  Log:
  Slowloris both helps identify the timeout windows of a HTTP server or Proxy
  server, can bypass httpready protection and ultimately performs a fairly low
  bandwidth denial of service.  It has the added benefit of allowing the server
  to come back at any time (once the program is killed), and not spamming the
  logs excessively.  It also keeps the load nice and low on the target server, so
  other vital processes don't die unexpectedly, or cause alarm to anyone who is
  logged into the server for other reasons.
  
  The main audience using slowloris is of course a system administrators wanting
  to measure their webserver's performance and vulnerability.
  
  WWW: http://ha.ckers.org/slowloris/
  
  PR:             ports/136281
  Submitted by:   Alexey V. Degtyarev
  
  Revision  Changes    Path
  1.66      +1 -0      ports/benchmarks/Makefile
  1.1       +43 -0     ports/benchmarks/slowloris/Makefile (new)
  1.1       +3 -0      ports/benchmarks/slowloris/distinfo (new)
  1.1       +7 -0      ports/benchmarks/slowloris/files/extra-nothreads (new)
  1.1       +12 -0     ports/benchmarks/slowloris/pkg-descr (new)
_______________________________________________
cvs-all@freebsd.org mailing list
http://lists.freebsd.org/mailman/listinfo/cvs-all
To unsubscribe, send any mail to "cvs-all-unsubscribe@freebsd.org"
Comment 3 Philip M. Gollucci freebsd_committer freebsd_triage 2009-07-13 23:43:12 UTC 
State Changed
From-To: open->closed

Committed. Thanks!