Friday, February 23, 2024

Workarounds Issued For ‘Apache Killer’ Attack

Datamation content and product recommendations are editorially independent. We may make money when you click on links to our partners. Learn More.

Dark Reading: The Apache Foundation has issued an alert about a security flaw in its extremely popular Web server software that could enable crippling DDoS attacks launched from a single PC. “By sending specially crafted HTTP requests which include malformed range HTTP header, an attacker can disrupt the normal function of the web server, thus disallowing legitimate users to receive responses from the web server,” reads the advisory. “This issue affects all Apache software versions and a patch has not been released yet.”

Apache expects to release a patch for the problem within the week. Until then, they offered several workarounds, including limiting the size of the HTTP request field to “a few hundred bytes.”

Subscribe to Data Insider

Learn the latest news and best practices about data science, big data analytics, artificial intelligence, data security, and more.

Similar articles

Get the Free Newsletter!

Subscribe to Data Insider for top news, trends & analysis

Latest Articles